Re: Suggestion for epa-mail-mode

emacs-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Suggestion for epa-mail-mode

From:	Leo
Subject:	Re: Suggestion for epa-mail-mode
Date:	Wed, 22 Dec 2010 05:39:51 +0000
User-agent:	Gnus/5.13 (Gnus v5.13) Emacs/23.2.91 (Mac OS X 10.6.5)

On 2010-12-20 22:52 +0000, ken manheimer wrote:
> thanks, leo. i'm genuinely sorry it took so long.

Is it? The key is it is done ;)

> in fact, there were some substantial features i had to trade-off in
> the transition. allout is more cumbersome and error-prone for dealing
> with symmetric encodings for numerous encrypted entries in a file,
> because i had to let go of encryption passphrase validation and
> hinting. that comes in exchange for significantly less insecurity due
> to no handling of passphrases in emacs code. instead, as always when
> using epg with GnuPG version 2, all passphrase handling is outside of
> emacs, in gnupg's gpg, gpg-agent, and pinentry, which i expect are
> drastically less vulnerable.
>
> it is for that reason that i was ultimately willing to forego those
> features, though i wish i could have more control without greater
> vulnerability...

Many thanks for the hard work. That looks like good compromise.

> ken

Best,
Leo

[Prev in Thread]

Current Thread

[Next in Thread]

Re: Suggestion for epa-mail-mode, Leo, 2010/12/20
- Re: Suggestion for epa-mail-mode, ken manheimer, 2010/12/20
  - Re: Suggestion for epa-mail-mode, Leo <=

Prev by Date: Re: Gnus + GPG integration broken after revision 102412.
Next by Date: allout key bindings and trailing control-h
Previous by thread: Re: Suggestion for epa-mail-mode
Next by thread: Tabs for console
Index(es):
- Date
- Thread