Jonkman Microblog
  • Login
Show Navigation

  • Public

    • Public
    • Network
    • Groups
    • Popular
    • People

Conversation

Notices

  1. Greg Hendershott (greghendershott@mastodon.social)'s status on Sunday, 23-Sep-2018 20:42:09 EDT Greg Hendershott Greg Hendershott

    racket-mode is now stricter about the TCP connections its command and logger servers accept: Only from localhost, and, supplying the same token used to launch the server process. https://github.com/greghendershott/racket-mode/issues/327#issuecomment-417826049
    Thanks @cwebber

    In conversation Sunday, 23-Sep-2018 20:42:09 EDT from mastodon.social permalink

    Attachments

    1. localhost + port isn't safe · Issue #327 · greghendershott/racket-mode
      from GitHub
      We had to fix a similar issue in Guile last year. Localhost + port isn't actually safe in that it's possible for the browser to act as a "confused deputy" so that lines of command...
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

Jonkman Microblog is a social network, courtesy of SOBAC Microcomputer Services. It runs on GNU social, version 1.2.0-beta5, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All Jonkman Microblog content and data are available under the Creative Commons Attribution 3.0 license.

Switch to desktop site layout.