GNU bug report logs - #17127
`call-process' circumvents password concealment w/ `read-passwd'

Previous Next

Package: emacs;

Reported by: Nathan Trapuzzano <nbtrap <at> nbtrap.com>

Date: Fri, 28 Mar 2014 00:34:01 UTC

Severity: normal

Tags: fixed

Fixed in version 27.1

Done: Lars Ingebrigtsen <larsi <at> gnus.org>

Bug is archived. No further changes may be made.

Full log

Message #11 received at 17127 <at> debbugs.gnu.org (full text, mbox):

From: Nathan Trapuzzano <nbtrap <at> nbtrap.com>
To: Stefan Monnier <monnier <at> IRO.UMontreal.CA>
Cc: 17127 <at> debbugs.gnu.org
Subject: Re: bug#17127: `call-process' circumvents password concealment w/
 `read-passwd'
Date: Thu, 27 Mar 2014 22:39:41 -0400

Stefan Monnier <monnier <at> IRO.UMontreal.CA> writes:

> This looks fairly contrived.  How did you stumble upon this problem?

Copy/pasting passwords from console password manager to emacs running on
terminal emulator in X.  The built-in copy/paste functionaly for the X
clipboard only works (AFAIK) with graphical emacs, so I use my own
commands to make it work on a terminal.  Here's the one that made me
catch it:

(defun paste-from-X-clipboard ()
  "Insert the X clipboard contents at point."
  (interactive)
  (call-process "xclip" nil t nil "-selection" "clipboard" "-o"))

I use that to paste passwords when, e.g., finding remote files via
ssh/TRAMP.

This bug report was last modified 5 years and 216 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.

GNU bug report logs - #17127 `call-process' circumvents password concealment w/ `read-passwd'

GNU bug report logs - #17127
`call-process' circumvents password concealment w/ `read-passwd'