Re: Remaining package issues in latest (pre8) XEmacs
On Fri, 16 Oct 1998 16:56:04 EDT, you said:
How about if the file is (not (file-remote-p file))
I don't ask about it being OK without PGP?
Wrong test. This same whoops has been the cause of many
a reported problem in Java, JavaScript, ActiveX, and other
network-aware creations.
Consider the following:
1) Person manages to stash a package-oid file in your system's
~ftp/incoming directory.
2) Person manages to get you to reference said file somehow.
3) Hey, it's on your system.. it doesn't need to be checked.. Whoops.
I'll dig up all the CERT advisories and Bugtraq postings on this
if anybody cares. ;)
/Valdis