[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

read-passwd: no longer as secure?

From: T.V. Raman
Subject: read-passwd: no longer as secure?
Date: Sun, 22 Apr 2012 08:53:39 -0700

Spotted this because after a recent git update, I started hearing
passwords as I typed in Emacspeak.

The move to reimplementing read-passwd using read-string appears
to no longer set  echo-keystrokes -- but is relying on setting
the display property of the char that is displayed to ?. ---
though this hides on  the display it is still available to most
lisp code.

I can update emacspeak so it doesn't speak the chars --- but I
still feel somewhat uneasy about the read-passwd implementation


reply via email to

[Prev in Thread] Current Thread [Next in Thread]