From mboxrd@z Thu Jan  1 00:00:00 1970
Path: news.gmane.org!not-for-mail
From: Karl Fogel <kfogel@red-bean.com>
Newsgroups: gmane.emacs.devel
Subject: Re: more on starttls, gnutls-cli and using tls for mail
Date: Sat, 13 Aug 2011 21:26:13 -0400
Message-ID: <8762m0n5qi.fsf@red-bean.com>
References: <20039.8838.116211.694328@gargle.gargle.HOWL>
Reply-To: Karl Fogel <kfogel@red-bean.com>
NNTP-Posting-Host: lo.gmane.org
Mime-Version: 1.0
Content-Type: text/plain
X-Trace: dough.gmane.org 1313285189 11987 80.91.229.12 (14 Aug 2011 01:26:29 GMT)
X-Complaints-To: usenet@dough.gmane.org
NNTP-Posting-Date: Sun, 14 Aug 2011 01:26:29 +0000 (UTC)
To: emacs-devel@gnu.org
Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Sun Aug 14 03:26:25 2011
Return-path: <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>
Envelope-to: ged-emacs-devel@m.gmane.org
Original-Received: from lists.gnu.org ([140.186.70.17])
	by lo.gmane.org with esmtp (Exim 4.69)
	(envelope-from <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>)
	id 1QsPT4-0006NI-It
	for ged-emacs-devel@m.gmane.org; Sun, 14 Aug 2011 03:26:22 +0200
Original-Received: from localhost ([::1]:55731 helo=lists.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>)
	id 1QsPT3-0001R2-Rc
	for ged-emacs-devel@m.gmane.org; Sat, 13 Aug 2011 21:26:21 -0400
Original-Received: from eggs.gnu.org ([140.186.70.92]:35926)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <kfogel@gmail.com>) id 1QsPT0-0001Qj-Ps
	for emacs-devel@gnu.org; Sat, 13 Aug 2011 21:26:19 -0400
Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <kfogel@gmail.com>) id 1QsPSz-0006CB-4Y
	for emacs-devel@gnu.org; Sat, 13 Aug 2011 21:26:18 -0400
Original-Received: from mail-qy0-f176.google.com ([209.85.216.176]:57852)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <kfogel@gmail.com>) id 1QsPSz-0006C7-2L
	for emacs-devel@gnu.org; Sat, 13 Aug 2011 21:26:17 -0400
Original-Received: by qyk7 with SMTP id 7so2811880qyk.0
	for <emacs-devel@gnu.org>; Sat, 13 Aug 2011 18:26:16 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
	h=sender:from:to:subject:references:reply-to:date:in-reply-to
	:message-id:user-agent:mime-version:content-type;
	bh=dRChU21NEeJ2DdMfnLfKInLFXKeR21jBW4Scahv0BPA=;
	b=OEoWcUDAJIhUNOWd57P1vsCBzS08Y/BLqNF995qeXXQ5EvaSVeAt3DYsYgC7SUmNZa
	yDNhTsbnWDOecZcZKCrPy2Dn9+UnkupnyIdWJITKhrQZKEKpoO7IBGJ0G6CvVI/EKRdJ
	Q+B2KnGs0J+8JVCSLABTiu/mY4tpvDMnO04jQ=
Original-Received: by 10.229.119.151 with SMTP id z23mr1641086qcq.2.1313285175768;
	Sat, 13 Aug 2011 18:26:15 -0700 (PDT)
Original-Received: from floss (cpe-66-65-49-129.nyc.res.rr.com [66.65.49.129])
	by mx.google.com with ESMTPS id h16sm2989024qct.8.2011.08.13.18.26.14
	(version=TLSv1/SSLv3 cipher=OTHER);
	Sat, 13 Aug 2011 18:26:14 -0700 (PDT)
In-Reply-To: <20039.8838.116211.694328@gargle.gargle.HOWL> (T. V. Raman's
	message of "Sat, 13 Aug 2011 18:19:02 -0700")
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.0.50 (gnu/linux)
X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.6 (newer, 2)
X-Received-From: 209.85.216.176
X-BeenThere: emacs-devel@gnu.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: "Emacs development discussions." <emacs-devel.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/emacs-devel>,
	<mailto:emacs-devel-request@gnu.org?subject=unsubscribe>
List-Archive: </archive/html/emacs-devel>
List-Post: <mailto:emacs-devel@gnu.org>
List-Help: <mailto:emacs-devel-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/emacs-devel>,
	<mailto:emacs-devel-request@gnu.org?subject=subscribe>
Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org
Original-Sender: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org
Xref: news.gmane.org gmane.emacs.devel:143199
Archived-At: <http://permalink.gmane.org/gmane.emacs.devel/143199>

"T. V. Raman" <tv.raman.tv@gmail.com> writes:
>Also, if you ask smtpmail to save the security settings, it
>creates a world-readable .authinfo with the password stored in
>the clear --- looks like a bad idea on all counts.

I've been thinking that lately too.

First, the fact that .authinfo is created world-readable just seems like
a clear bug.  Also easy to fix (sorry, I don't have patch, but I could
come up with one if we all agree this is a straight bug).

Second: I think it was a mistake that we fully deprecated
`smtpmail-auth-credentials' in favor of ~/.authinfo, instead of, say,
just making the latter override the former when the latter is present.
It's good to have an entirely off-disk option for passing credentials;
maybe most users won't use it, but some will, and it's good in principle
to offer it.  (For example, search for that variable in [1] to see how I
was using it.)

I'd like to know how people feel about the above assertions, before I
start patching anything, though.

-Karl

[1] http://svn.red-bean.com/repos/kfogel/trunk/.emacs