1 Return-Path: <dkg@fifthhorseman.net>
\r
2 X-Original-To: notmuch@notmuchmail.org
\r
3 Delivered-To: notmuch@notmuchmail.org
\r
4 Received: from localhost (localhost [127.0.0.1])
\r
5 by olra.theworths.org (Postfix) with ESMTP id 1C694431FBC
\r
6 for <notmuch@notmuchmail.org>; Mon, 7 Apr 2014 22:25:40 -0700 (PDT)
\r
7 X-Virus-Scanned: Debian amavisd-new at olra.theworths.org
\r
11 X-Spam-Status: No, score=0 tagged_above=-999 required=5 tests=[none]
\r
13 Received: from olra.theworths.org ([127.0.0.1])
\r
14 by localhost (olra.theworths.org [127.0.0.1]) (amavisd-new, port 10024)
\r
15 with ESMTP id A8yvYU9CFhoS for <notmuch@notmuchmail.org>;
\r
16 Mon, 7 Apr 2014 22:25:34 -0700 (PDT)
\r
17 Received: from che.mayfirst.org (che.mayfirst.org [209.234.253.108])
\r
18 by olra.theworths.org (Postfix) with ESMTP id 7F45A431FB6
\r
19 for <notmuch@notmuchmail.org>; Mon, 7 Apr 2014 22:25:34 -0700 (PDT)
\r
20 Received: from [10.21.9.0] (unknown [107.19.144.191])
\r
21 by che.mayfirst.org (Postfix) with ESMTPSA id F178DF984;
\r
22 Tue, 8 Apr 2014 01:25:29 -0400 (EDT)
\r
23 Message-ID: <53438849.5050500@fifthhorseman.net>
\r
24 Date: Tue, 08 Apr 2014 01:25:29 -0400
\r
25 From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
\r
26 User-Agent: Mozilla/5.0 (X11; Linux x86_64;
\r
27 rv:24.0) Gecko/20100101 Icedove/24.3.0
\r
29 To: Mark Walters <markwalters1009@gmail.com>,
\r
30 Jeremy Nickurak <not-much@trk.nickurak.ca>,
\r
31 Jameson Graef Rollins <jrollins@finestructure.net>
\r
32 Subject: Re: Feature suggestion. Indexing encrypted mail?
\r
33 References: <86k3b3ybo6.fsf@someserver.somewhere>
\r
34 <878urj1z3j.fsf@maritornes.cs.unb.ca>
\r
35 <87txa7pp8z.fsf@servo.finestructure.net>
\r
36 <20140406091516.GG26903@vilya.m0g.net> <5341D252.90405@fifthhorseman.net>
\r
37 <867g71y327.fsf@someserver.somewhere>
\r
38 <87ob0dnndk.fsf@servo.finestructure.net>
\r
39 <CA+eQo_3hUAc3uMWw6Hb2JLBATiBDS96GozCa5jqT_1sWz1Y=hQ@mail.gmail.com>
\r
40 <87d2gsonne.fsf@qmul.ac.uk>
\r
41 In-Reply-To: <87d2gsonne.fsf@qmul.ac.uk>
\r
42 X-Enigmail-Version: 1.6+git0.20140323
\r
43 Content-Type: multipart/signed; micalg=pgp-sha512;
\r
44 protocol="application/pgp-signature";
\r
45 boundary="4p2obPrRGNinEIx9HTBAme48kKMKT2cLR"
\r
46 Cc: Notmuch Mailing List <notmuch@notmuchmail.org>,
\r
47 Daniel Kahn Gillmor <dkg@debian.org>
\r
48 X-BeenThere: notmuch@notmuchmail.org
\r
49 X-Mailman-Version: 2.1.13
\r
51 List-Id: "Use and development of the notmuch mail system."
\r
52 <notmuch.notmuchmail.org>
\r
53 List-Unsubscribe: <http://notmuchmail.org/mailman/options/notmuch>,
\r
54 <mailto:notmuch-request@notmuchmail.org?subject=unsubscribe>
\r
55 List-Archive: <http://notmuchmail.org/pipermail/notmuch>
\r
56 List-Post: <mailto:notmuch@notmuchmail.org>
\r
57 List-Help: <mailto:notmuch-request@notmuchmail.org?subject=help>
\r
58 List-Subscribe: <http://notmuchmail.org/mailman/listinfo/notmuch>,
\r
59 <mailto:notmuch-request@notmuchmail.org?subject=subscribe>
\r
60 X-List-Received-Date: Tue, 08 Apr 2014 05:25:40 -0000
\r
62 This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
\r
63 --4p2obPrRGNinEIx9HTBAme48kKMKT2cLR
\r
64 Content-Type: text/plain; charset=UTF-8
\r
65 Content-Transfer-Encoding: quoted-printable
\r
67 On 04/07/2014 05:06 PM, Mark Walters wrote:
\r
69 > I think it is worse that that: I think (from what people said on irc
\r
70 > some time ago) that the index contains the word and the position of tha=
\r
72 > word so essentially the whole message can be reconstructed from the
\r
75 Agree with Mark here, the warnings around such a feature should clearly
\r
76 say "this stores a cleartext equivalent of your message in the notmuch
\r
79 Even if the index weren't structured in this way, modern natural
\r
80 language processing techniques and a plausible training corpus should be
\r
81 able to come very close to the original cleartext message, so it should
\r
84 fwiw, the workflow i outlined should make it so that users can receive
\r
85 all messages encrypted; when they read each encrypted message, they get
\r
86 a choice about whether to store a cleartext-equivalent in their notmuch
\r
87 index. (note of course that it's possible to store your notmuch index on
\r
88 an encrypted filesystem itself, for a different flavor of
\r
89 confidentiality protection for the data once it's come to rest).
\r
91 This per-message decision mechanism lets a thoughtful user make that
\r
92 tradeoff on a piecemeal basis (it also allows for blanket
\r
93 (mis)judgement, of course). There are certainly some messages that one
\r
94 might never want store in a cleartext index, while other messages might
\r
95 be less sensitive to exposure while being more valuable to the user if
\r
96 stored in a well-indexed, searchable local archive.
\r
98 I think this is a feature worth having, despite the warning labels it
\r
104 --4p2obPrRGNinEIx9HTBAme48kKMKT2cLR
\r
105 Content-Type: application/pgp-signature; name="signature.asc"
\r
106 Content-Description: OpenPGP digital signature
\r
107 Content-Disposition: attachment; filename="signature.asc"
\r
109 -----BEGIN PGP SIGNATURE-----
\r
111 Comment: Using GnuPG with Icedove - http://www.enigmail.net/
\r
113 iQJ8BAEBCgBmBQJTQ4hJXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w
\r
114 ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXRFQjk2OTEyODdBN0FEREUzNzU3RDkxMUVB
\r
115 NTI0MDFCMTFCRkRGQTVDAAoJEKUkAbEb/fpcK28QAOK8pEoQ6Cn6ZsplytoPZOky
\r
116 5qgP739i6YZVpgOOjfSDoWSuBSR1ItqketnKJSZ0O8b4q0HGXsBDbIvMf5QSlO4U
\r
117 7zXg3B2nO2VGXo9JfPvTvX0vaTdbQXK8RJSIkRsFnD/IXAaqGk3L2NvspQnsrLXi
\r
118 h55l5DAzEag2g1X4MrIziVGd6dIVxBPWQLLWsJtl742G9iVSThc8E9JFRgt3KpPw
\r
119 KdHH7+3rFCjpNUJTCVGdOzKzjad03lBA3dxNPo77Hc8VRIYRxj9Z0H2XcAwYFXSK
\r
120 Fji2Gh7T3U//u4HBbLGyr7KgHBMupUj5XU+cz7HMeL+ZKUHhm/VD4hUY40yCrzkz
\r
121 xIX84Srnr5U6dds22Aw7v1lYJdYwNzeCc15gIRmlH0C0wg3s36dufsD58r3dr+Eh
\r
122 zAHcqivJZgoYbR1xj7+MyFL4f9AMUsy9aohZ4veZIs4Xv4AtdBVjyXSD8W+b1aRC
\r
123 fL3iiLAn0u7SeNEj8vwQXGnXHmn/RjWzv08Uv3/Uow1s8edAl9UDlnpqajMbMsIU
\r
124 3bfPJeV57B4uNYyv6G/vaplzHZnOKZr+snMqUdNK/QOsY29Zdi6L0rjMR+R0GjFB
\r
125 Kbmt6JC1FrPyawyVPtrOW63cx8XqnrrkTaWICeciwqYHTtrJoT337+KDak2Zqb8V
\r
126 RMh4aP6QeC96WvEYEJ5U
\r
128 -----END PGP SIGNATURE-----
\r
130 --4p2obPrRGNinEIx9HTBAme48kKMKT2cLR--
\r