From mboxrd@z Thu Jan  1 00:00:00 1970
Path: news.gmane.org!not-for-mail
From: Daiki Ueno <ueno@unixuser.org>
Newsgroups: gmane.emacs.devel
Subject: Re: secure plist store
Date: Thu, 30 Jun 2011 16:43:33 +0900
Message-ID: <m339irix22.fsf-ueno@unixuser.org>
References: <m3ipu4u7bv.fsf@quimbies.gnus.org> <87tycamhmv.fsf@lifelogs.com>
	<jwvoc2hohs3.fsf-monnier+emacs@gnu.org> <87pqmxvfoh.fsf@lifelogs.com>
	<jwvei3dmxh4.fsf-monnier+emacs@gnu.org> <87sjrttwh8.fsf@lifelogs.com>
	<jwvzkm0khbw.fsf-monnier+emacs@gnu.org>
	<pknhb88txtm.fsf@this.is.really.invalid>
	<jwvoc2gjudo.fsf-monnier+emacs@gnu.org> <87wrh4b9h9.fsf@lifelogs.com>
	<87aae05l8p.fsf-ueno@unixuser.org> <87k4d4b66p.fsf@lifelogs.com>
	<m3ei3a8tth.fsf@quimbies.gnus.org> <87wrh0fh4g.fsf_-_@lifelogs.com>
	<m34o3cykd5.fsf@quimbies.gnus.org> <87y60ncma8.fsf_-_@lifelogs.com>
	<87vcvrne02.fsf-ueno@unixuser.org> <87r56ep3sm.fsf@lifelogs.com>
	<874o39n171.fsf-ueno@unixuser.org>
	<m3oc1hys9u.fsf_-_-ueno@unixuser.org> <87boxgr9f9.fsf@lifelogs.com>
NNTP-Posting-Host: lo.gmane.org
Mime-Version: 1.0
Content-Type: text/plain
X-Trace: dough.gmane.org 1309419847 29142 80.91.229.12 (30 Jun 2011 07:44:07 GMT)
X-Complaints-To: usenet@dough.gmane.org
NNTP-Posting-Date: Thu, 30 Jun 2011 07:44:07 +0000 (UTC)
To: emacs-devel@gnu.org
Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Thu Jun 30 09:44:04 2011
Return-path: <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>
Envelope-to: ged-emacs-devel@m.gmane.org
Original-Received: from lists.gnu.org ([140.186.70.17])
	by lo.gmane.org with esmtp (Exim 4.69)
	(envelope-from <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>)
	id 1QcBuu-0001XI-3J
	for ged-emacs-devel@m.gmane.org; Thu, 30 Jun 2011 09:44:04 +0200
Original-Received: from localhost ([::1]:56671 helo=lists.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>)
	id 1QcBus-0001kH-OQ
	for ged-emacs-devel@m.gmane.org; Thu, 30 Jun 2011 03:44:02 -0400
Original-Received: from eggs.gnu.org ([140.186.70.92]:51061)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <ueno@unixuser.org>) id 1QcBuc-0001k1-Rc
	for emacs-devel@gnu.org; Thu, 30 Jun 2011 03:43:47 -0400
Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <ueno@unixuser.org>) id 1QcBub-0003xb-IB
	for emacs-devel@gnu.org; Thu, 30 Jun 2011 03:43:46 -0400
Original-Received: from ivory4.scn-net.ne.jp ([219.117.176.192]:58349)
	by eggs.gnu.org with smtp (Exim 4.71)
	(envelope-from <ueno@unixuser.org>) id 1QcBub-0003ww-0l
	for emacs-devel@gnu.org; Thu, 30 Jun 2011 03:43:45 -0400
Original-Received: from ([192.168.0.187]) (envelope sender: <ueno@unixuser.org>)
	by ivory4.scn-net.ne.jp with Active!Hunter esmtp server;
	Thu, 30 Jun 2011 16:43:40 +0900
Original-Received: Received: from well-done.deisui.org (g187018.scn-net.ne.jp
	[202.83.187.18]) (authenticated)
	by blue17.scn-net.ne.jp (unknown) with ESMTP id p5U7he0G011105
	for <emacs-devel@gnu.org>; Thu, 30 Jun 2011 16:43:40 +0900
In-Reply-To: <87boxgr9f9.fsf@lifelogs.com> (Ted Zlatanov's message of "Wed, 29
	Jun 2011 09:36:58 -0500")
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.0.50 (gnu/linux)
X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.6, seldom 2.4 (older,
	4)
X-Received-From: 219.117.176.192
X-BeenThere: emacs-devel@gnu.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: "Emacs development discussions." <emacs-devel.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/emacs-devel>,
	<mailto:emacs-devel-request@gnu.org?subject=unsubscribe>
List-Archive: </archive/html/emacs-devel>
List-Post: <mailto:emacs-devel@gnu.org>
List-Help: <mailto:emacs-devel-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/emacs-devel>,
	<mailto:emacs-devel-request@gnu.org?subject=subscribe>
Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org
Original-Sender: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org
Xref: news.gmane.org gmane.emacs.devel:141204
Archived-At: <http://permalink.gmane.org/gmane.emacs.devel/141204>

Ted Zlatanov <tzz@lifelogs.com> writes:

> Regardless of the other discussion about netrc files, do you want
> plstore.el to be an auth-source backend?  The
> create/search/delete/modify behavior can be defined as you see fit and
> does not have to work like the netrc backend.

I hope that you don't mind, I've just checked in the plstore backend of
auth-source.  It works pretty well for me.  In summary:

PROS:
- it works with GPG 2 (unlike netrc field encryption)
- it does not run GPG until the secret is really needed (unlike
  ~/.authinfo.gpg)
- it writes secrets in encrypted form (unlike ~/.authinfo)
- the encrypted form can be easily decrypted using M-x
  epa-decrypt-region (unlike netrc field encryption)

CONS:
- the file format is not easily editable
- the code is not mature (delete is not supported)

Anyway, if you want to try, set:

(setq auth-sources '("~/.emacs.d/auth.plist"))

Regards,
-- 
Daiki Ueno