1 Return-Path: <meskio@sindominio.net>
\r
2 X-Original-To: notmuch@notmuchmail.org
\r
3 Delivered-To: notmuch@notmuchmail.org
\r
4 Received: from localhost (localhost [127.0.0.1])
\r
5 by olra.theworths.org (Postfix) with ESMTP id 1E10B431FBC
\r
6 for <notmuch@notmuchmail.org>; Sun, 10 Jan 2010 04:40:21 -0800 (PST)
\r
7 X-Virus-Scanned: Debian amavisd-new at olra.theworths.org
\r
8 Received: from olra.theworths.org ([127.0.0.1])
\r
9 by localhost (olra.theworths.org [127.0.0.1]) (amavisd-new, port 10024)
\r
10 with ESMTP id VvB9mVtOOm+w for <notmuch@notmuchmail.org>;
\r
11 Sun, 10 Jan 2010 04:40:20 -0800 (PST)
\r
12 Received: from flatline.sindominio.net (flatline.sindominio.net [82.144.4.26])
\r
13 by olra.theworths.org (Postfix) with ESMTP id 18AD7431FAE
\r
14 for <notmuch@notmuchmail.org>; Sun, 10 Jan 2010 04:40:20 -0800 (PST)
\r
15 Received: from localhost (localhost.localdomain [127.0.0.1])
\r
16 by flatline.sindominio.net (Postfix) with ESMTP id 72710262AD9;
\r
17 Sun, 10 Jan 2010 13:40:17 +0100 (CET)
\r
18 X-Virus-Scanned: Debian amavisd-new at sindominio.net
\r
19 Received: from flatline.sindominio.net ([127.0.0.1])
\r
20 by localhost (flatline.sindominio.net [127.0.0.1]) (amavisd-new,
\r
22 with ESMTP id 2LmKLZhfDJzy; Sun, 10 Jan 2010 13:40:14 +0100 (CET)
\r
23 Received: from blackspot (222.162.87-79.rev.gaoland.net [79.87.162.222])
\r
24 by flatline.sindominio.net (Postfix) with ESMTPA id 7C9F3262A36;
\r
25 Sun, 10 Jan 2010 13:40:14 +0100 (CET)
\r
26 Received: by blackspot (Postfix, from userid 1000)
\r
27 id C3D6D8BCBD; Sun, 10 Jan 2010 13:42:59 +0100 (CET)
\r
28 Date: Sun, 10 Jan 2010 13:42:59 +0100
\r
29 From: Ruben Pollan <meskio@sindominio.net>
\r
30 To: micah anderson <micah@riseup.net>
\r
31 Message-ID: <20100110124259.GK15677@blackspot>
\r
32 References: <20091123130009.GA31695@finestructure.net>
\r
33 <20091126060132.GA5875@finestructure.net>
\r
34 <20100108025610.GA28357@lapse.rw.madduck.net>
\r
35 <20100108092121.GE7139@blackspot>
\r
36 <873a2gbd09.fsf@lillypad.riseup.net>
\r
38 Content-Type: multipart/signed; micalg=pgp-sha1;
\r
39 protocol="application/pgp-signature"; boundary="vJI8q/aziP9idhqk"
\r
40 Content-Disposition: inline
\r
41 In-Reply-To: <873a2gbd09.fsf@lillypad.riseup.net>
\r
42 User-Agent: Mutt/1.5.20 (2009-06-14)
\r
43 Cc: notmuch@notmuchmail.org
\r
44 Subject: Re: [notmuch] indexing encrypted messages (was: OpenPGP support)
\r
45 X-BeenThere: notmuch@notmuchmail.org
\r
46 X-Mailman-Version: 2.1.13
\r
48 List-Id: "Use and development of the notmuch mail system."
\r
49 <notmuch.notmuchmail.org>
\r
50 List-Unsubscribe: <http://notmuchmail.org/mailman/options/notmuch>,
\r
51 <mailto:notmuch-request@notmuchmail.org?subject=unsubscribe>
\r
52 List-Archive: <http://notmuchmail.org/pipermail/notmuch>
\r
53 List-Post: <mailto:notmuch@notmuchmail.org>
\r
54 List-Help: <mailto:notmuch-request@notmuchmail.org?subject=help>
\r
55 List-Subscribe: <http://notmuchmail.org/mailman/listinfo/notmuch>,
\r
56 <mailto:notmuch-request@notmuchmail.org?subject=subscribe>
\r
57 X-List-Received-Date: Sun, 10 Jan 2010 12:40:21 -0000
\r
61 Content-Type: text/plain; charset=iso-8859-1
\r
62 Content-Disposition: inline
\r
63 Content-Transfer-Encoding: quoted-printable
\r
65 On 14:41, Fri 08 Jan 10, micah anderson wrote:
\r
66 > On Fri, 8 Jan 2010 10:21:21 +0100, Ruben Pollan <meskio@sindominio.net> w=
\r
68 > > On 15:56, Fri 08 Jan 10, martin f krafft wrote:
\r
69 > > > How about indexing GPG-encrypted messages?
\r
71 > > I think that would be security hole. You should not store the
\r
72 > > encrypted messages on a decrypted database. A solution whould be to
\r
73 > > encrypt as well the xapian DB, but I think is too complex for the use.
\r
75 > Would you consider it a security hole if you stored your database on
\r
76 > encrypted media (such as on-disk block encryption)?
\r
78 No, in this case should be not a security hole. But anyway what is secure a=
\r
80 what not should be defined by the user. For some users may not be a security
\r
81 hole to store the email decrypted.
\r
83 But I think notmuch by default should not do so. This kind of things should=
\r
85 something that the user activate by hand knowing what she is doing.
\r
87 > I know that sup does this, when it ran over my mail store, it would
\r
88 > trigger my gpg agent so that it could decrypt the encrypted
\r
89 > messages. This was annoying because this happened every time it ran,
\r
90 > which meant that unless I had used gpg recently, my agent would pop up
\r
91 > and ask me for my passphrase, which was often.
\r
93 I didn't use sup. Don't know how it works. But that feature is technically
\r
94 possible. As I said before in my personal opinion that should not be the=20
\r
95 out-of-the-box behavior.
\r
97 > The way Mutt provides this functionality is by decrypting only when you
\r
98 > perform the search itself.
\r
100 Yes, but notmuch can not do that. notmuch indexes the messages and mutt not.
\r
105 Rub=E9n Poll=E1n | jabber:meskio@jabber.org
\r
106 -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=
\r
107 =3D-=3D-=3D-=3D-=3D-
\r
108 Lo hago para no volverme loco cuando noto
\r
109 que solo me queda un demonio en un hombro
\r
110 por que se ha cortado las venas
\r
111 el =E1ngel que hab=EDa en el otro.
\r
114 Content-Type: application/pgp-signature; name="signature.asc"
\r
115 Content-Description: Digital signature
\r
116 Content-Disposition: inline
\r
118 -----BEGIN PGP SIGNATURE-----
\r
119 Version: GnuPG v1.4.10 (GNU/Linux)
\r
121 iEYEARECAAYFAktJy1MACgkQGKOQ92SwNML++gCeJIOb1Hj7TcM/omhtrjT95aI/
\r
122 iZgAnR3tAYmWf1pDaeU9Cdf0Qmav/R8k
\r
124 -----END PGP SIGNATURE-----
\r
126 --vJI8q/aziP9idhqk--
\r