Highest Voted 'security' Questions - Emacs Stack Exchange

22

votes

2 answers

How to automatically sign commits with magit?

I'm interested on having each of my commits signed with my GPG key. Since I use magit for interfacing with git, I was wondering if telling magit to sign each commit was possible (or some workaround to achieve this was feasible, at least).

asked Nov 30 '15 at 23:33

shackra

2,702
18
47

15

votes

2 answers

Safe way to `enable-local-variables`?

I inherited my .emacs file from a friend about 18 years ago. Buried in the middle is the following ominous comment warning about the security implications of the enable-local-variables feature: ;; Date: Wed, 7 Dec 1994 11:57:50 -0600 ;; From:…

security file-local-variables

asked Sep 23 '14 at 21:23

Wandering Logic

253
2
7

9

votes

2 answers

Configure jabber without writing password in plain text

I find jabber to be a fantastic tool, but it worries me a little that my password is written in plain text in my init file. Is there a way to configure my jabber login credentials without writing them in plain text? Just to be clear, I don't want to…

security passwords

asked Sep 23 '14 at 21:59

Malabarba

22,878
6
78
163

9

votes

1 answer

How do I verify a large package in a git repo is safe?

I'm looking at emacs helm specifically, which has the following properties: it has thousands of commits it is largely maintained by one user the maintainer has no other profiles (social media, etc.) I was able to find on a few searches it is…

helm package security github

asked Apr 01 '15 at 17:53

djechlin

923
8
21

8

votes

2 answers

How do you select under emacs the key you sign/encrypt with when using mml?

Long time mutt user, I am currently trying to learn how to deal with my mail from within emacs with the help of mu4e. When it comes to signing mail, I use the following (add-hook 'message-send-hook 'mml-secure-message-sign-pgpmime) which…

mu4e security encryption

asked Feb 03 '15 at 18:21

csantosb

1,045
6
15

8

votes

1 answer

How to prevent shr from making network connections

Recent versions of Emacs have a really good renderer for HTML written entirely in Elisp. This renderer (shr) can be used for displaying HTML emails, documentation, etc. However, it seems that shr retrieves remote resources referenced in HTML…

eww security shr

asked Nov 14 '14 at 18:26

tmalsburg

2,540
1
14
29

7

votes

1 answer

Execute org-mode source blocks without security confirmation

I only want to turn off the warnings for certain source block languages. I couldn't find an answer to this anywhere, only how to turn off the confirmation requests for all languages: (setq org-confirm-babel-evaluate nil) This is a super easy…

org-mode org-babel security

asked Mar 21 '16 at 01:35

n1k31t4

669
8
18

3

votes

1 answer

Secure random numbers

I'd like to generate some random passwords using Emacs, and thus need a secure random number generator. I don't like that 'random might be seeded from system time I'd feel most comfortable just reading from…

security

asked Sep 19 '17 at 12:56

Felipe

329
1
8

2

votes

2 answers

crypto-newbie: how to securely sign outgoing email with `smtpmail` (or simplest alternative)?

I'm running $ cat /etc/debian_version jessie/sid $ uname -rv 3.11-2-amd64 #1 SMP Debian 3.11.8-1 (2013-11-13) $ gcc --version | head -n 1 gcc (Debian 4.8.2-1) 4.8.2 $ emacs --version | head -n 1 GNU Emacs 24.3.1 $ gpg --version | head -n 1 gpg…

email linux security gnutls debian

asked Feb 13 '15 at 01:36

TomRoche

592
3
20

2

votes

1 answer

risky file local “outline-level”

I'm reading (info "(emacs) 25.9.1 Format of Outlines"): can explicitly specify a rule for calculating the level of a heading line by setting the variable outline-level. ...... The recommended ways to set this variable are in a major mode command or…

file-local-variables outline-mode security

asked Jun 28 '23 at 07:43

shynur

4,065
1
3
23

2

votes

1 answer

How to avoid emacs pop-up security warning for code eval

How to disable this pop-up warning for orgmode commands such as: shell:ls *.org For which I would wish just to click once? Thanks!

org-mode warning eval security

asked Jul 23 '21 at 08:45

Adelita

155
7

2

votes

1 answer

How can I create secrets for use with the Secrets API auth-source?

Trying to create new secrets in the GNOME keyring via auth-source results in The Secrets API auth-source backend doesn’t support creation yet How can I manually create this secret?

security authinfo

asked Mar 31 '18 at 20:42

Felipe

329
1
8

2

votes

2 answers

Will there be security updates to Emacs 24.3?

I am trying to make the case to my employer that updating from Emacs 24.3 to Emacs 24.5 is the right thing to do. The (understandable) justification for sticking with version 24.3 is that it is supported and configured by the OS vendor (CentOS),…

security

asked Aug 11 '15 at 16:22

nispio

8,175
2
35
73

1

vote

2 answers

Avoid placing safe-local-variable-values in init file

I have a project with a .dir-locals.el file. This file contains some customizations for various project local variables, e.g. include directories for semantic and arguments for clang. First time opening the project, Emacs asks if I want to consider…

init-file local-variables security

asked Jun 28 '23 at 11:52

alexpanter

111
4

0

votes

1 answer

At the time of prompting for a password (from a subordinate shell), sometimes Emacs hides the password, sometimes not. Why the inconsistency?

I use shells running under Emacs (via M-x shell) under a variety of settings1. In all these settings, I use the same .emacs file. Nevertheless I observe an inconsistency, as described below. In some settings, when I run a command that requires a…

shell-mode comint passwords security

asked Feb 27 '23 at 22:17

kjo

3,145
14
42

Questions tagged [security]