ad/67abfba57900d0f2d8d6d01e01fd1ecaa5358e

   1 Return-Path: <dkg@fifthhorseman.net>\r
   2 X-Original-To: notmuch@notmuchmail.org\r
   3 Delivered-To: notmuch@notmuchmail.org\r
   4 Received: from localhost (localhost [127.0.0.1])\r
   5         by olra.theworths.org (Postfix) with ESMTP id B9371431FAF\r
   6         for <notmuch@notmuchmail.org>; Mon,  8 Jul 2013 05:22:45 -0700 (PDT)\r
   7 X-Virus-Scanned: Debian amavisd-new at olra.theworths.org\r
   8 X-Spam-Flag: NO\r
   9 X-Spam-Score: 0\r
  10 X-Spam-Level: \r
  11 X-Spam-Status: No, score=0 tagged_above=-999 required=5 tests=[none]\r
  12         autolearn=disabled\r
  13 Received: from olra.theworths.org ([127.0.0.1])\r
  14         by localhost (olra.theworths.org [127.0.0.1]) (amavisd-new, port 10024)\r
  15         with ESMTP id Ku7e8U+geUCm for <notmuch@notmuchmail.org>;\r
  16         Mon,  8 Jul 2013 05:22:39 -0700 (PDT)\r
  17 Received: from che.mayfirst.org (che.mayfirst.org [209.234.253.108])\r
  18         by olra.theworths.org (Postfix) with ESMTP id 39358431FAE\r
  19         for <notmuch@notmuchmail.org>; Mon,  8 Jul 2013 05:22:39 -0700 (PDT)\r
  20 Received: from [192.168.13.179] (lair.fifthhorseman.net [108.58.6.98])\r
  21         by che.mayfirst.org (Postfix) with ESMTPSA id A4C91F980;\r
  22         Mon,  8 Jul 2013 08:22:37 -0400 (EDT)\r
  23 Message-ID: <51DAAF0B.7050506@fifthhorseman.net>\r
  24 Date: Mon, 08 Jul 2013 08:22:35 -0400\r
  25 From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>\r
  26 User-Agent: Mozilla/5.0 (X11; Linux x86_64;\r
  27         rv:17.0) Gecko/20130630 Icedove/17.0.7\r
  28 MIME-Version: 1.0\r
  29 To: Neil Roberts <neil@linux.intel.com>\r
  30 Subject: Re: [PATCH 0/2] Prompting for the GPG password within Emacs\r
  31 References: <1373195672-9338-1-git-send-email-neil@linux.intel.com>\r
  32         <51D9F4E6.1030504@fifthhorseman.net> <87r4f9xqc7.fsf@neilpc.config>\r
  33         <51DAA617.4090308@fifthhorseman.net> <87mwpxxmzp.fsf@neilpc.config>\r
  34 In-Reply-To: <87mwpxxmzp.fsf@neilpc.config>\r
  35 X-Enigmail-Version: 1.5.1\r
  36 Content-Type: multipart/signed; micalg=pgp-sha512;\r
  37         protocol="application/pgp-signature";\r
  38         boundary="----enig2LUFGJGLUAWLXHGWXRPVU"\r
  39 Cc: notmuch@notmuchmail.org\r
  40 X-BeenThere: notmuch@notmuchmail.org\r
  41 X-Mailman-Version: 2.1.13\r
  42 Precedence: list\r
  43 List-Id: "Use and development of the notmuch mail system."\r
  44         <notmuch.notmuchmail.org>\r
  45 List-Unsubscribe: <http://notmuchmail.org/mailman/options/notmuch>,\r
  46         <mailto:notmuch-request@notmuchmail.org?subject=unsubscribe>\r
  47 List-Archive: <http://notmuchmail.org/pipermail/notmuch>\r
  48 List-Post: <mailto:notmuch@notmuchmail.org>\r
  49 List-Help: <mailto:notmuch-request@notmuchmail.org?subject=help>\r
  50 List-Subscribe: <http://notmuchmail.org/mailman/listinfo/notmuch>,\r
  51         <mailto:notmuch-request@notmuchmail.org?subject=subscribe>\r
  52 X-List-Received-Date: Mon, 08 Jul 2013 12:22:45 -0000\r
  53 \r
  54 This is an OpenPGP/MIME signed message (RFC 4880 and 3156)\r
  55 ------enig2LUFGJGLUAWLXHGWXRPVU\r
  56 Content-Type: text/plain; charset=UTF-8\r
  57 Content-Transfer-Encoding: quoted-printable\r
  58 \r
  59 On 07/08/2013 08:19 AM, Neil Roberts wrote:\r
  60 > Heh, yeah, I also experimented with going down this route. I wrote an\r
  61 > overly complicated C program=C2=B9 to manage launching the two SSH sess=\r
  62 ions.\r
  63 > That also only handles one session, but yeah I guess you could get the\r
  64 > program to relaunch the SSH session after the first connection dies.\r
  65 \r
  66 did you try the approach i outlined?  no extra C code needed, and if you\r
  67 want it to re-launch, you should be able to just wrap it in a shell for\r
  68 loop :)  You might also want a ,reuseaddr on the inner UNIX-LISTEN socat\r
  69 endpoint.\r
  70 \r
  71 > I came across some other people who were suggesting=C2=B2 to make socat=\r
  72  wrap\r
  73 > the Unix socket in a TCP socket and then tunnel that over SSH. I guess\r
  74 > that would be a simple way to support multiple sessions. However it\r
  75 > seems a bit dodgy to open a port because you can't restrict the access\r
  76 > by user.\r
  77 \r
  78 I agree you don't want to wrap it up in a TCP socket, for exactly the\r
  79 access control reasons you describe.\r
  80 \r
  81         --dkg\r
  82 \r
  83 \r
  84 \r
  85 ------enig2LUFGJGLUAWLXHGWXRPVU\r
  86 Content-Type: application/pgp-signature; name="signature.asc"\r
  87 Content-Description: OpenPGP digital signature\r
  88 Content-Disposition: attachment; filename="signature.asc"\r
  89 \r
  90 -----BEGIN PGP SIGNATURE-----\r
  91 Version: GnuPG v1.4.12 (GNU/Linux)\r
  92 Comment: Using GnuPG with Icedove - http://www.enigmail.net/\r
  93 \r
  94 iQJ8BAEBCgBmBQJR2q8LXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w\r
  95 ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXRFQjk2OTEyODdBN0FEREUzNzU3RDkxMUVB\r
  96 NTI0MDFCMTFCRkRGQTVDAAoJEKUkAbEb/fpc6rMQAKpGSdMn0YJHkKNen39m5Ioq\r
  97 qzSfSS7Mz4umN7uJMaY3E5F3nCKkHzCDhbDXmZgphiAEM4f+m/H1mmiUtNHV61uV\r
  98 I2XdeAKs9gxmrNiQPxkwNuB1h+786Mo0KLgskdxB1hlQr2Se2709FgHTTzou7zL2\r
  99 mYgFVD8rF8PX4RHjkTlTDLCz45tdlsANJAn1tFCxXBowYYCSUhk0vs9+J9tljvZh\r
 100 Ov6HyppKsFFNCztQsKfeVR6ZM/MCy78p564hulHzkxyIkw+k2XH9drUV6XU/MKoA\r
 101 jLE3Agcnr2xfri3o8NhDV9BH7hJZNIXNk+xpVW8pWM6VS45Zj9EbXGOzZdW70vik\r
 102 F3kJ5l0vl1lnYQ2a79mLEpDuXo4Sy1waH+jwND+bmqNi5h8P4H+XMVmO6g0PMVSW\r
 103 Ujb8OkDTdIBe+ylgGrJmNANVnYmRxoNI3Sd8KUA1fM+AQAGyUsDTBMbzK2VBXP5I\r
 104 dEA+3aKEB2IX2D1J3/XENnaUC5zY0/VzSnbjK/gGrtqn4pu2TiUes0h5iQNkqTrU\r
 105 ghjTPCTg/nm2n4EK9W2g35iIPK1egWEtasJd3OmtkBntXPZOP1r+QQ9V6rVah3KX\r
 106 mQCYgJCl34Qkdc3Q+x8igMcwXoBSOLJUTNwyq1KFM33SvPqxjXpu0f9BJo9OgGLI\r
 107 XI2AuxJnZvCVzHEYDiP3\r
 108 =UsHo\r
 109 -----END PGP SIGNATURE-----\r
 110 \r
 111 ------enig2LUFGJGLUAWLXHGWXRPVU--\r