From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
Date: Mon, 8 Jul 2013 12:22:35 +0000 (+2000)
Subject: Re: [PATCH 0/2] Prompting for the GPG password within Emacs
X-Git-Url: http://git.tremily.us/?a=commitdiff_plain;h=7b3182b440775dcde2ea78032eafe12a708a40b6;p=notmuch-archives.git

Re: [PATCH 0/2] Prompting for the GPG password within Emacs
---

diff --git a/ad/67abfba57900d0f2d8d6d01e01fd1ecaa5358e b/ad/67abfba57900d0f2d8d6d01e01fd1ecaa5358e
new file mode 100644
index 000000000..ceed47f5e
--- /dev/null
+++ b/ad/67abfba57900d0f2d8d6d01e01fd1ecaa5358e
@@ -0,0 +1,111 @@
+Return-Path: <dkg@fifthhorseman.net>
+X-Original-To: notmuch@notmuchmail.org
+Delivered-To: notmuch@notmuchmail.org
+Received: from localhost (localhost [127.0.0.1])
+	by olra.theworths.org (Postfix) with ESMTP id B9371431FAF
+	for <notmuch@notmuchmail.org>; Mon,  8 Jul 2013 05:22:45 -0700 (PDT)
+X-Virus-Scanned: Debian amavisd-new at olra.theworths.org
+X-Spam-Flag: NO
+X-Spam-Score: 0
+X-Spam-Level: 
+X-Spam-Status: No, score=0 tagged_above=-999 required=5 tests=[none]
+	autolearn=disabled
+Received: from olra.theworths.org ([127.0.0.1])
+	by localhost (olra.theworths.org [127.0.0.1]) (amavisd-new, port 10024)
+	with ESMTP id Ku7e8U+geUCm for <notmuch@notmuchmail.org>;
+	Mon,  8 Jul 2013 05:22:39 -0700 (PDT)
+Received: from che.mayfirst.org (che.mayfirst.org [209.234.253.108])
+	by olra.theworths.org (Postfix) with ESMTP id 39358431FAE
+	for <notmuch@notmuchmail.org>; Mon,  8 Jul 2013 05:22:39 -0700 (PDT)
+Received: from [192.168.13.179] (lair.fifthhorseman.net [108.58.6.98])
+	by che.mayfirst.org (Postfix) with ESMTPSA id A4C91F980;
+	Mon,  8 Jul 2013 08:22:37 -0400 (EDT)
+Message-ID: <51DAAF0B.7050506@fifthhorseman.net>
+Date: Mon, 08 Jul 2013 08:22:35 -0400
+From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
+User-Agent: Mozilla/5.0 (X11; Linux x86_64;
+	rv:17.0) Gecko/20130630 Icedove/17.0.7
+MIME-Version: 1.0
+To: Neil Roberts <neil@linux.intel.com>
+Subject: Re: [PATCH 0/2] Prompting for the GPG password within Emacs
+References: <1373195672-9338-1-git-send-email-neil@linux.intel.com>
+	<51D9F4E6.1030504@fifthhorseman.net> <87r4f9xqc7.fsf@neilpc.config>
+	<51DAA617.4090308@fifthhorseman.net> <87mwpxxmzp.fsf@neilpc.config>
+In-Reply-To: <87mwpxxmzp.fsf@neilpc.config>
+X-Enigmail-Version: 1.5.1
+Content-Type: multipart/signed; micalg=pgp-sha512;
+	protocol="application/pgp-signature";
+	boundary="----enig2LUFGJGLUAWLXHGWXRPVU"
+Cc: notmuch@notmuchmail.org
+X-BeenThere: notmuch@notmuchmail.org
+X-Mailman-Version: 2.1.13
+Precedence: list
+List-Id: "Use and development of the notmuch mail system."
+	<notmuch.notmuchmail.org>
+List-Unsubscribe: <http://notmuchmail.org/mailman/options/notmuch>,
+	<mailto:notmuch-request@notmuchmail.org?subject=unsubscribe>
+List-Archive: <http://notmuchmail.org/pipermail/notmuch>
+List-Post: <mailto:notmuch@notmuchmail.org>
+List-Help: <mailto:notmuch-request@notmuchmail.org?subject=help>
+List-Subscribe: <http://notmuchmail.org/mailman/listinfo/notmuch>,
+	<mailto:notmuch-request@notmuchmail.org?subject=subscribe>
+X-List-Received-Date: Mon, 08 Jul 2013 12:22:45 -0000
+
+This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
+------enig2LUFGJGLUAWLXHGWXRPVU
+Content-Type: text/plain; charset=UTF-8
+Content-Transfer-Encoding: quoted-printable
+
+On 07/08/2013 08:19 AM, Neil Roberts wrote:
+> Heh, yeah, I also experimented with going down this route. I wrote an
+> overly complicated C program=C2=B9 to manage launching the two SSH sess=
+ions.
+> That also only handles one session, but yeah I guess you could get the
+> program to relaunch the SSH session after the first connection dies.
+
+did you try the approach i outlined?  no extra C code needed, and if you
+want it to re-launch, you should be able to just wrap it in a shell for
+loop :)  You might also want a ,reuseaddr on the inner UNIX-LISTEN socat
+endpoint.
+
+> I came across some other people who were suggesting=C2=B2 to make socat=
+ wrap
+> the Unix socket in a TCP socket and then tunnel that over SSH. I guess
+> that would be a simple way to support multiple sessions. However it
+> seems a bit dodgy to open a port because you can't restrict the access
+> by user.
+
+I agree you don't want to wrap it up in a TCP socket, for exactly the
+access control reasons you describe.
+
+	--dkg
+
+
+
+------enig2LUFGJGLUAWLXHGWXRPVU
+Content-Type: application/pgp-signature; name="signature.asc"
+Content-Description: OpenPGP digital signature
+Content-Disposition: attachment; filename="signature.asc"
+
+-----BEGIN PGP SIGNATURE-----
+Version: GnuPG v1.4.12 (GNU/Linux)
+Comment: Using GnuPG with Icedove - http://www.enigmail.net/
+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+=UsHo
+-----END PGP SIGNATURE-----
+
+------enig2LUFGJGLUAWLXHGWXRPVU--