29 Aug
2005
29 Aug
'05
6:16 a.m.
lgorrie@common-lisp.net (Luke Gorrie) writes:
+ * slime.el (slime-enable-evaluate-in-emacs): New variable. + (evaluate-in-emacs): Security improvement: If + slime-enable-evaluate-in-emacs is nil (the default), don't + evaluate forms sent by the Lisp.
what is the security risk (which isn't already present just by having slime connected) which evaluate-in-emacs adds? do you often connect slime to untrusted swank servers? or can swank somehow connect itself to emacs (this would be really cool btw)? -- -Marco Ring the bells that still can ring. Forget the perfect offering. There is a crack in everything. That's how the light gets in. -Leonard Cohen