Your Text Editor Is Malware: Emacs is a garbage fire of security
-
While vim can install plugins over HTTPS, the emacs community defaults all plugin installs to plain HTTP, and it's a terrible pain to tell emacs to "please, actually verify the HTTPS connection".
The solution is to switch to
ed
, the standard text editor. Attend ed1conf for more details.
-
-
$ ed
:vomit:
?
-
Security is the opiate of the masses.
-
Oxycontin is the opiate of the masses?
-
But emacs runs on Linux, and there's no malware on Linux, so that's a point anyway
-
Iām relatively proud of my track record of being a staunch advocate for improved security in text editor package installation.
Ehr... That appears to be a rather unique specialisation.
The solution is to switch to ed, the standard text editor. Attend ed1conf for more details.
But NotepadConf is so much cooler...
-
How about Notepadqq?
-
Oh, they do yet another plugin infrastructure now? That only took how long to borrow from XEmacs? I wonder if it comes complete with broken dependency resolution. It is imperative to have non-functional dependency resolution.
-
Question from the gallery: are most people - even most people that use vim etc. - actually legitimate targets for being hacked in this fashion?
-
actually legitimate targets for being hacked in this fashion?
yes.
not because the hacker wants their info, but because the hacker wants a zombie that does their bidding and acts as a infection vector to create more zombies.
-
Ehr... That appears to be a rather unique specialisation.
In a logical world, yes.
In a world where every slightly advanced program somehow has to reinvent plugins, downloads, updates, etc. it's not.
-
emacs community defaults all plugin installs to plain HTTP
I thought the emacs community defaults to everyone just hacking their own in elisp.