1 Return-Path: <tomi.ollila@iki.fi>
\r
2 X-Original-To: notmuch@notmuchmail.org
\r
3 Delivered-To: notmuch@notmuchmail.org
\r
4 Received: from localhost (localhost [127.0.0.1])
\r
5 by arlo.cworth.org (Postfix) with ESMTP id ACB676DE09ED
\r
6 for <notmuch@notmuchmail.org>; Sat, 6 Feb 2016 12:48:47 -0800 (PST)
\r
7 X-Virus-Scanned: Debian amavisd-new at cworth.org
\r
11 X-Spam-Status: No, score=0.652 tagged_above=-999 required=5 tests=[AWL=-0.000,
\r
12 SPF_NEUTRAL=0.652] autolearn=disabled
\r
13 Received: from arlo.cworth.org ([127.0.0.1])
\r
14 by localhost (arlo.cworth.org [127.0.0.1]) (amavisd-new, port 10024)
\r
15 with ESMTP id XkMfr6XP8k8a for <notmuch@notmuchmail.org>;
\r
16 Sat, 6 Feb 2016 12:48:44 -0800 (PST)
\r
17 Received: from guru.guru-group.fi (guru.guru-group.fi [46.183.73.34])
\r
18 by arlo.cworth.org (Postfix) with ESMTP id AA3806DE0261
\r
19 for <notmuch@notmuchmail.org>; Sat, 6 Feb 2016 12:48:44 -0800 (PST)
\r
20 Received: from guru.guru-group.fi (localhost [IPv6:::1])
\r
21 by guru.guru-group.fi (Postfix) with ESMTP id E1340100063;
\r
22 Sat, 6 Feb 2016 22:48:55 +0200 (EET)
\r
23 From: Tomi Ollila <tomi.ollila@iki.fi>
\r
24 To: Daniel Kahn Gillmor <dkg@fifthhorseman.net>,
\r
25 Notmuch Mail <notmuch@notmuchmail.org>
\r
26 Subject: Re: Allow indexing cleartext of encrypted messages (v3)
\r
27 In-Reply-To: <1454272801-23623-1-git-send-email-dkg@fifthhorseman.net>
\r
28 References: <1454272801-23623-1-git-send-email-dkg@fifthhorseman.net>
\r
29 User-Agent: Notmuch/0.21+32~g73439f8 (http://notmuchmail.org) Emacs/24.3.1
\r
30 (x86_64-unknown-linux-gnu)
\r
31 X-Face: HhBM'cA~<r"^Xv\KRN0P{vn'Y"Kd;zg_y3S[4)KSN~s?O\"QPoL
\r
32 $[Xv_BD:i/F$WiEWax}R(MPS`^UaptOGD`*/=@\1lKoVa9tnrg0TW?"r7aRtgk[F
\r
33 !)g;OY^,BjTbr)Np:%c_o'jj,Z
\r
34 Date: Sat, 06 Feb 2016 22:48:55 +0200
\r
35 Message-ID: <m2bn7tef9k.fsf@guru.guru-group.fi>
\r
37 Content-Type: text/plain
\r
38 X-BeenThere: notmuch@notmuchmail.org
\r
39 X-Mailman-Version: 2.1.20
\r
41 List-Id: "Use and development of the notmuch mail system."
\r
42 <notmuch.notmuchmail.org>
\r
43 List-Unsubscribe: <https://notmuchmail.org/mailman/options/notmuch>,
\r
44 <mailto:notmuch-request@notmuchmail.org?subject=unsubscribe>
\r
45 List-Archive: <http://notmuchmail.org/pipermail/notmuch/>
\r
46 List-Post: <mailto:notmuch@notmuchmail.org>
\r
47 List-Help: <mailto:notmuch-request@notmuchmail.org?subject=help>
\r
48 List-Subscribe: <https://notmuchmail.org/mailman/listinfo/notmuch>,
\r
49 <mailto:notmuch-request@notmuchmail.org?subject=subscribe>
\r
50 X-List-Received-Date: Sat, 06 Feb 2016 20:48:47 -0000
\r
52 On Sun, Jan 31 2016, Daniel Kahn Gillmor <dkg@fifthhorseman.net> wrote:
\r
54 > This is the third draft of the series initially announced in
\r
55 > id:1449718786-28000-1-git-send-email-dkg@fifthhorseman.net (second
\r
57 > id:1453258369-7366-1-git-send-email-dkg@fifthhorseman.net). It
\r
58 > differs from v2 in that it incorporates the recent improvements in
\r
59 > detecting and processing S/MIME signatures.
\r
61 Looks pretty good. Nothing to bikeshed. Did not run tests yet.
\r
67 > From the v2 description:
\r
69 >> Notmuch currently doesn't index the cleartext of encrypted mail. This
\r
70 >> is the right choice by default, because the index is basically
\r
71 >> cleartext-equivalent, and we wouldn't want every indexed mailstore to
\r
72 >> leak the contents of its encrypted mails.
\r
74 >> However, if a notmuch user has their index in a protected location,
\r
75 >> they may prefer the convenience of being able to search the contents
\r
76 >> of (at least some of) their encrypted mail.
\r
78 >> This series of patches enables notmuch to index the cleartext of
\r
79 >> specific encrypted messages when they're being added via "notmuch new"
\r
80 >> or "notmuch insert", via a new --try-decrypt flag.
\r
82 >> If --try-decrypt is used, and decryption is successful for part of a
\r
83 >> message, the message gets an additional "index-decrypted" tag. If
\r
84 >> decryption of part of a message fails, the message gets an additional
\r
85 >> "index-decryption-failed" tag.
\r
87 > v2 addresses the concerns raised from the helpful feedback on the
\r
88 > previous series, and adds a notmuch_indexopts_t object that can be
\r
89 > used to declare options for indexing messages, including a
\r
90 > "try_decrypt" boolean.
\r
92 > Additionally, this series adds a new function to libnotmuch:
\r
94 > notmuch_message_reindex (notmuch_message_t *message,
\r
95 > notmuch_indexopts_t *indexopts)
\r
97 > Which allows user of the library to adjust the indexing options of a
\r
100 > The CLI is additionally augmented with a new notmuch subcommand,
\r
101 > "notmuch reindex", which also has a --try-decrypt flag.
\r
103 > So a user who has their message index stored securely and wants to
\r
104 > index the cleartext of all encrypted messages they've received can do
\r
107 > notmuch reindex --try-decrypt tag:encrypted and not tag:index-decrypted
\r
109 > Or can clear all indexed cleartext from their database with:
\r
111 > notmuch reindex tag:encrypted and tag:index-decrypted
\r
114 > _______________________________________________
\r
115 > notmuch mailing list
\r
116 > notmuch@notmuchmail.org
\r
117 > https://notmuchmail.org/mailman/listinfo/notmuch
\r