From: Jameson Graef Rollins Date: Sun, 12 Jan 2014 19:24:45 +0000 (+1600) Subject: encrypting replies to encrypted mail X-Git-Url: http://git.tremily.us/?a=commitdiff_plain;h=d40471efd40211766377b7a930c9c5055345c73c;p=notmuch-archives.git encrypting replies to encrypted mail --- diff --git a/b6/92bde7847ea52fc91e2c7e98c1058a08e50c4d b/b6/92bde7847ea52fc91e2c7e98c1058a08e50c4d new file mode 100644 index 000000000..a67ddea0e --- /dev/null +++ b/b6/92bde7847ea52fc91e2c7e98c1058a08e50c4d @@ -0,0 +1,107 @@ +Return-Path: +X-Original-To: notmuch@notmuchmail.org +Delivered-To: notmuch@notmuchmail.org +Received: from localhost (localhost [127.0.0.1]) + by olra.theworths.org (Postfix) with ESMTP id 953B1431E84 + for ; Sun, 12 Jan 2014 11:25:03 -0800 (PST) +X-Virus-Scanned: Debian amavisd-new at olra.theworths.org +X-Spam-Flag: NO +X-Spam-Score: -2.3 +X-Spam-Level: +X-Spam-Status: No, score=-2.3 tagged_above=-999 required=5 + tests=[RCVD_IN_DNSWL_MED=-2.3] autolearn=disabled +Received: from olra.theworths.org ([127.0.0.1]) + by localhost (olra.theworths.org [127.0.0.1]) (amavisd-new, port 10024) + with ESMTP id nEbQm+17xvKF for ; + Sun, 12 Jan 2014 11:24:56 -0800 (PST) +Received: from outgoing-mail.its.caltech.edu (outgoing-mail.its.caltech.edu + [131.215.239.19]) + by olra.theworths.org (Postfix) with ESMTP id 440F4431E82 + for ; Sun, 12 Jan 2014 11:24:56 -0800 (PST) +Received: from fire-doxen.imss.caltech.edu (localhost [127.0.0.1]) + by fire-doxen-postvirus (Postfix) with ESMTP id C894132800A + for ; Sun, 12 Jan 2014 11:24:53 -0800 (PST) +X-Spam-Scanned: at Caltech-IMSS on fire-doxen by amavisd-new +Received: from finestructure.net (wsip-98-175-145-180.no.no.cox.net + [98.175.145.180]) (Authenticated sender: jrollins) + by fire-doxen-submit (Postfix) with ESMTP id 406472E50E87 + for ; Sun, 12 Jan 2014 11:24:52 -0800 (PST) +Received: by finestructure.net (Postfix, from userid 1000) + id 16839600A3; Sun, 12 Jan 2014 11:24:48 -0800 (PST) +From: Jameson Graef Rollins +To: Notmuch Mail +Subject: encrypting replies to encrypted mail +User-Agent: Notmuch/0.17+9~g39408d0 (http://notmuchmail.org) Emacs/24.3.1 + (x86_64-pc-linux-gnu) +Date: Sun, 12 Jan 2014 11:24:45 -0800 +Message-ID: <87a9f1c8aq.fsf@servo.finestructure.net> +MIME-Version: 1.0 +Content-Type: multipart/signed; boundary="=-=-="; + micalg=pgp-sha256; protocol="application/pgp-signature" +X-BeenThere: notmuch@notmuchmail.org +X-Mailman-Version: 2.1.13 +Precedence: list +List-Id: "Use and development of the notmuch mail system." + +List-Unsubscribe: , + +List-Archive: +List-Post: +List-Help: +List-Subscribe: , + +X-List-Received-Date: Sun, 12 Jan 2014 19:25:03 -0000 + +--=-=-= +Content-Type: text/plain + +Hi, folks. I've been worried for a while about the fact that my notmuch +mua (notmuch-emacs) does not automatically encrypt replies to encrypted +messages. Recently my fears came true when I accidentally sent in the +clear a reply to an encrypted message that include a full quote of the +original encrypted text. This is obviously not ok, to the extent that I +would like to now consider this a UI bug in notmuch-emacs. + +The question is how do we solve this problem. The tricky bit is that +notmuch-emacs uses message-mode to compose and send messages, and mml to +handle signing and encrypting, but uses the binary "reply" command to +generate reply bodies. message-mode therefore does not know if the +original message was encrypted or not. + +One proposal would be to add a switch to the reply command that would +insert the mml "signencrypt" header [0] to the top of reply bodies if +the message being replied to was encrypted. Something like +"--mml-encrypt" or something like that. It's a fix targeted to a +particular work flow/setup, but it might cover enough use cases to make +it still be worthwhile. + +What do people think? Any other ideas for solving this issue? I note +that there are other emacs tricks for dealing with encrypting messages +[1], but none that I have found would solve this particular situation. + +jamie. + +[0] https://www.gnu.org/software/emacs/manual/html_node/mh-e/Sending-PGP.html +[1] http://www.emacswiki.org/emacs/DefaultEncrypt + +--=-=-= +Content-Type: application/pgp-signature + +-----BEGIN PGP SIGNATURE----- +Version: GnuPG v1.4.15 (GNU/Linux) + +iQIcBAEBCAAGBQJS0uv9AAoJEO00zqvie6q85/AP/RMm36GO9SSbID/hjnEajncS ++y0VD1AF2JIEOp+X58JXYPX4kGPw4QSdnC1FkckwjRzF2Ms8BAWwd0UMrrm0PdyF +LJ/VQD/vP7jeLu3d4jj9NJdnEHYCwshbBoW1XX0xpO7ygoRG2cAzC0DfE8Qfy2rN +0UJCvfAep+ufZSunucM628pRNoqvu+MnJHDVI94leXFHyWda2VmvBbIJJwCRcNBi +m61oWIBu+l28wZNIRqQeM8Cnwmf+Ty9p4IzyBdHSt0XotNcr9Ha1EP6Jx6n0+KHg +35ZobBGeW683SD2rJHm4431DZ1V4dzfIt8YnUaYF9NriuC0VkK6QBHROUm/t3coy +yJ21PBGOFHfwuZa4ob0HJ60GZyZCePRsy8fLHnkRC06qk1aI4qq2wNs1Ymyxhl4d +ulEvwv5u13UwI3CBtf0cOhqMtjUOYkm+U/XsXHJZ+OJooP1bF9t6pSw9rq9jR+DU +dHKeKddxG+A9JdD9jRpvCDkcD1pWRW2w8Z5Zi02gHzM/GM1HC05JyQH/GhJq08ME +Ay+PxyXTQDgeFVWdczZ4hyJ/sqGOFx+9OZ2wOIkZPtKy+MCtoy4ajsQZxD1CSaB7 +ey8/CFkiffnHttgcdVS/UmPxRaF9N92e2PbPCnSjiND4zRszG1OxHCd9+FubqNpA +UiWSFQHfQrtbsS78AFqD +=CG7m +-----END PGP SIGNATURE----- +--=-=-=--