1 Return-Path: <dkg@fifthhorseman.net>
\r
2 X-Original-To: notmuch@notmuchmail.org
\r
3 Delivered-To: notmuch@notmuchmail.org
\r
4 Received: from localhost (localhost [127.0.0.1])
\r
5 by olra.theworths.org (Postfix) with ESMTP id ADD5C431FAF
\r
6 for <notmuch@notmuchmail.org>; Sun, 7 Jul 2013 16:08:33 -0700 (PDT)
\r
7 X-Virus-Scanned: Debian amavisd-new at olra.theworths.org
\r
11 X-Spam-Status: No, score=0 tagged_above=-999 required=5 tests=[none]
\r
13 Received: from olra.theworths.org ([127.0.0.1])
\r
14 by localhost (olra.theworths.org [127.0.0.1]) (amavisd-new, port 10024)
\r
15 with ESMTP id v2lOKIr6EhDv for <notmuch@notmuchmail.org>;
\r
16 Sun, 7 Jul 2013 16:08:28 -0700 (PDT)
\r
17 Received: from che.mayfirst.org (che.mayfirst.org [209.234.253.108])
\r
18 by olra.theworths.org (Postfix) with ESMTP id 396BC431FAE
\r
19 for <notmuch@notmuchmail.org>; Sun, 7 Jul 2013 16:08:28 -0700 (PDT)
\r
20 Received: from [10.156.156.160] (cpe-69-204-251-149.nyc.res.rr.com
\r
22 by che.mayfirst.org (Postfix) with ESMTPSA id 6419FF97F;
\r
23 Sun, 7 Jul 2013 19:08:23 -0400 (EDT)
\r
24 Message-ID: <51D9F4E6.1030504@fifthhorseman.net>
\r
25 Date: Sun, 07 Jul 2013 19:08:22 -0400
\r
26 From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
\r
27 User-Agent: Mozilla/5.0 (X11; Linux x86_64;
\r
28 rv:17.0) Gecko/20130630 Icedove/17.0.7
\r
30 To: Neil Roberts <neil@linux.intel.com>
\r
31 Subject: Re: [PATCH 0/2] Prompting for the GPG password within Emacs
\r
32 References: <1373195672-9338-1-git-send-email-neil@linux.intel.com>
\r
33 In-Reply-To: <1373195672-9338-1-git-send-email-neil@linux.intel.com>
\r
34 X-Enigmail-Version: 1.5.1
\r
35 Content-Type: multipart/signed; micalg=pgp-sha512;
\r
36 protocol="application/pgp-signature";
\r
37 boundary="----enig2SSCGSASEDNCAEHGCMEIM"
\r
38 Cc: notmuch@notmuchmail.org
\r
39 X-BeenThere: notmuch@notmuchmail.org
\r
40 X-Mailman-Version: 2.1.13
\r
42 List-Id: "Use and development of the notmuch mail system."
\r
43 <notmuch.notmuchmail.org>
\r
44 List-Unsubscribe: <http://notmuchmail.org/mailman/options/notmuch>,
\r
45 <mailto:notmuch-request@notmuchmail.org?subject=unsubscribe>
\r
46 List-Archive: <http://notmuchmail.org/pipermail/notmuch>
\r
47 List-Post: <mailto:notmuch@notmuchmail.org>
\r
48 List-Help: <mailto:notmuch-request@notmuchmail.org?subject=help>
\r
49 List-Subscribe: <http://notmuchmail.org/mailman/listinfo/notmuch>,
\r
50 <mailto:notmuch-request@notmuchmail.org?subject=subscribe>
\r
51 X-List-Received-Date: Sun, 07 Jul 2013 23:08:33 -0000
\r
53 This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
\r
54 ------enig2SSCGSASEDNCAEHGCMEIM
\r
55 Content-Type: text/plain; charset=UTF-8
\r
56 Content-Transfer-Encoding: quoted-printable
\r
60 On 07/07/2013 07:14 AM, Neil Roberts wrote:
\r
62 > I've recently started using notmuch to try and read PGP-encrypted
\r
63 > email. However the trouble is I normally access my email remotely via
\r
64 > SSH and it's very difficult to get gpg-agent to work in those
\r
65 > circumstances. I've therefore made some patches to try and get Emacs
\r
66 > to prompt for the password. They are based on the way mml communicates
\r
67 > with gpg by having two pipes so that notmuch can notify Emacs that it
\r
68 > needs a password and it will reply on the other.
\r
70 I strongly encourage you to get the gpg-agent model sorted out for your
\r
71 use case, instead of moving in the direction of this patch series.
\r
73 The fewer tools that handle your OpenPGP passphrase the better, and
\r
74 future versions of GnuPG will not be able to work without the gpg-agent
\r
75 anyway (all secret key activity will be handled by the agent as of gnupg
\r
76 version 2.1, if i understand upstream's development plans correctly).
\r
78 I personally hope that notmuch (and notmuch-emacs) will resist the urge
\r
79 to try to handle any sort of sensitive material like secret keys or
\r
80 passphrases directly, but will leave that work to libraries or
\r
81 out-of-process agents.
\r
83 Can you describe what you've tried in terms of using gpg-agent? where
\r
84 are your secret keys stored? are they on your local machine, or on the
\r
92 ------enig2SSCGSASEDNCAEHGCMEIM
\r
93 Content-Type: application/pgp-signature; name="signature.asc"
\r
94 Content-Description: OpenPGP digital signature
\r
95 Content-Disposition: attachment; filename="signature.asc"
\r
97 -----BEGIN PGP SIGNATURE-----
\r
98 Version: GnuPG v1.4.12 (GNU/Linux)
\r
99 Comment: Using GnuPG with Icedove - http://www.enigmail.net/
\r
101 iQJ8BAEBCgBmBQJR2fTmXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w
\r
102 ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXRFQjk2OTEyODdBN0FEREUzNzU3RDkxMUVB
\r
103 NTI0MDFCMTFCRkRGQTVDAAoJEKUkAbEb/fpcvLoP/2I4h0TeYVC+J9/k/5pxieaG
\r
104 oAYJ9XZ8D0i6UZi4jQqlK9yq6O4WN0URRXKoFURUdL6+09P2jTUvsyBo21C9Z1PN
\r
105 dV4xkTy5lMYRbRjOcm0CAl1VRoMcH/8gH1Ae09jr+MpmK5Qn6MHYVrllzSK/p31v
\r
106 yL9dozLeZtiSdRXpFtq31XKqhhOH7dhZDWB0/T4DKZfHqZ+VYIEIc3Y6esK6Mj5A
\r
107 haCam/SLQSfPbvZWvhTRJnFuQXLNSwrWJH/pTJd6za8mASzjbtXhtjVCs7xmEPtW
\r
108 buTfdqCG2/YUr6ZnwTESvRz2MkFgglgm8zstpLObdQcljyzTU2E2bPyIJ7IplyYT
\r
109 auphsZyeohzX8FC9PK45J0RqJqKWU85XgbZxAbYVDcRY+STrRz+cz+582ktIPTD+
\r
110 kkSUrLWyKI3Ixo+mbUeOhlDkO40bslP1qm01j/gy3NU6qwfPVx6jHJ+YhlAYcGp6
\r
111 HcFNEsvyghU1hLUbbeHb+jsuZ/2zJBb1sJaBRYV0hymIuToooT6Jea8eMNbg/jj0
\r
112 acx1cSxsPCn03KLY4LxKnER1qoWCekhiQZQtSYzU51xhVW1ElEDPWNGsPqJk4wS1
\r
113 WFCl8iSS4GVo+KTlqfyWTQLGOVHAhOaKl4AgAknSaUdPIpxYwPc8pSdj8WhFNDNj
\r
114 xXxbWe7vnSwVEhoGWPp5
\r
116 -----END PGP SIGNATURE-----
\r
118 ------enig2SSCGSASEDNCAEHGCMEIM--
\r
projects / notmuch-archives.git / blob