Return-Path: <dkg@fifthhorseman.net>
X-Original-To: notmuch@notmuchmail.org
Delivered-To: notmuch@notmuchmail.org
Received: from localhost (localhost [127.0.0.1])
	by olra.theworths.org (Postfix) with ESMTP id ECBB2429E36
	for <notmuch@notmuchmail.org>; Wed, 25 Jan 2012 11:09:39 -0800 (PST)
X-Virus-Scanned: Debian amavisd-new at olra.theworths.org
X-Spam-Flag: NO
X-Spam-Score: 0
X-Spam-Level: 
X-Spam-Status: No, score=0 tagged_above=-999 required=5 tests=[none]
	autolearn=disabled
Received: from olra.theworths.org ([127.0.0.1])
	by localhost (olra.theworths.org [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id RETEvMc1flE3 for <notmuch@notmuchmail.org>;
	Wed, 25 Jan 2012 11:09:39 -0800 (PST)
Received: from che.mayfirst.org (che.mayfirst.org [209.234.253.108])
	by olra.theworths.org (Postfix) with ESMTP id 4010C431FBC
	for <notmuch@notmuchmail.org>; Wed, 25 Jan 2012 11:09:39 -0800 (PST)
Received: from [192.168.23.207] (dsl254-070-154.nyc1.dsl.speakeasy.net
	[216.254.70.154])
	by che.mayfirst.org (Postfix) with ESMTPSA id B899FF970;
	Wed, 25 Jan 2012 14:09:33 -0500 (EST)
Message-ID: <4F205368.4020402@fifthhorseman.net>
Date: Wed, 25 Jan 2012 14:09:28 -0500
From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
User-Agent: Mozilla/5.0 (X11; Linux i686; rv:8.0) Gecko/20120104 Icedove/8.0
MIME-Version: 1.0
To: Jameson Graef Rollins <jrollins@finestructure.net>
Subject: Re: Emacs: Crypto: How to get automatic encryption?
References: <87pqejj5nl.fsf@marcos.anarcat.ath.cx>
	<cunfwfer8i0.fsf@hotblack-desiato.hh.sledj.net>
	<87ehuo7pjr.fsf@algae.riseup.net>
	<87ehuoljzs.fsf@servo.finestructure.net>
	<cunvco0nvwa.fsf@hotblack-desiato.hh.sledj.net>
	<87liow6slg.fsf@servo.finestructure.net>
	<cund3a8nkwl.fsf@hotblack-desiato.hh.sledj.net>
	<878vkv7k2q.fsf@servo.finestructure.net>
In-Reply-To: <878vkv7k2q.fsf@servo.finestructure.net>
X-Enigmail-Version: 1.3.4
Content-Type: multipart/signed; micalg=pgp-sha512;
	protocol="application/pgp-signature";
	boundary="------------enigA0474EB29AD29C958F179AF8"
Cc: Notmuch Mail <notmuch@notmuchmail.org>
X-BeenThere: notmuch@notmuchmail.org
X-Mailman-Version: 2.1.13
Precedence: list
List-Id: "Use and development of the notmuch mail system."
	<notmuch.notmuchmail.org>
List-Unsubscribe: <http://notmuchmail.org/mailman/options/notmuch>,
	<mailto:notmuch-request@notmuchmail.org?subject=unsubscribe>
List-Archive: <http://notmuchmail.org/pipermail/notmuch>
List-Post: <mailto:notmuch@notmuchmail.org>
List-Help: <mailto:notmuch-request@notmuchmail.org?subject=help>
List-Subscribe: <http://notmuchmail.org/mailman/listinfo/notmuch>,
	<mailto:notmuch-request@notmuchmail.org?subject=subscribe>
X-List-Received-Date: Wed, 25 Jan 2012 19:09:40 -0000

This is an OpenPGP/MIME signed message (RFC 2440 and 3156)
--------------enigA0474EB29AD29C958F179AF8
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

On 01/25/2012 12:45 PM, Jameson Graef Rollins wrote:
> Here's a behavior that I think would be reasonable:
>=20
>  * notmuch reply outputs JSON encrypted flag
>=20
>  * emacs does a quick check to see if the needed key is available
>=20
>  * if key not available: give a nice mini-buffer prompt, something like=
:
> =20
>     'encryption key for "Foo Bar <foo@bar.com>" not found.  Retrieve?'
>=20
>    * if response is yes: call gpg to retrieve the key
>=20
>  * if key available: add encrypt flag
>=20
>    else: I feel like this should abort, but maybe there's something to
>          be done here.  Allow reply but don't quote the original?

I note from observing my own correspondence practices that there are
some other heuristics that might be reasonable, if we're willing to be
more sophisticated here too.

For example:

 * if the entire encrypted message body was signed by key X (which we
either have or fetch), and
 * X has a User ID which matches the address to which we're replying, and=

 * we don't have a technically-valid matching User ID for the e-mail
address (so we wouldn't normally want to encrypt mail to key X),

then

 we could offer (or default) to encrypt the reply to that key anyway, on
the grounds that the keyholder in question knew the contents of the
original message anyway.

Some visual indication of being in this corner-case state would be nice,
of course.

While i'm dreaming, I'd also love to be able to get some statistics
about how many messages in a given thread have this kind
encryption/signing response.  It would be interesting for some sort of
measurement of e-mail+keyholding continuity, which would be useful in a
more generalized contacts+crypto manager.

	--dkg


--------------enigA0474EB29AD29C958F179AF8
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=MH2G
-----END PGP SIGNATURE-----

--------------enigA0474EB29AD29C958F179AF8--