Re: About the removal of pinentry.el

emacs-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: About the removal of pinentry.el

From:	Nicolas Petton
Subject:	Re: About the removal of pinentry.el
Date:	Tue, 16 Jan 2018 14:19:05 +0100

John Wiegley <address@hidden> writes:

> Sounds like it.

I updated the package on ELPA with the changes from the Emacs
repository.

What about the following NEWS entry?

  ** The pinentry.el library has been removed.
  The package is still available through ELPA.  With 'epa-pinentry-mode'
  set to the symbol 'loopback', epa can now redirect Pinentry queries to
  Emacs instead of an external Pinentry program.
  
  pinentry.el is still useful together with the 'pinentry-emacs' program
  to always use Emacs minibuffer to prompt for passphrases, even when
  using GnuPG outside of Emacs.
  
  Note that previously, it was said that passphrase input through
  minibuffer would be much less secure than other graphical pinentry
  programs.  However, these days the difference is insignificant: the
  'read-password' function sufficiently protects input from leakage to
  message logs.  Emacs still doesn't use secure memory to protect
  passphrases, but it was also removed from other pinentry programs as
  the attack is unrealistic on modern computer systems which don't
  utilize swap memory usually.

Cheers,
Nico

signature.asc
Description: PGP signature

[Prev in Thread]

Current Thread

[Next in Thread]

Re: About the removal of pinentry.el, (continued)

Prev by Date: master fails to build on FreeBSD when ACL support is on
Next by Date: vc-region-history: HG?
Previous by thread: Re: About the removal of pinentry.el
Next by thread: Re: About the removal of pinentry.el
Index(es):
- Date
- Thread