On 1/9/12 5:43 PM, Ted Zlatanov wrote:
> SM> I don't think Emacs should reinvent every wheel.  GPG does this job well
> SM> and using it means that those files can be decrypted without Emacs.
> 
> Calling out to an external process is less secure than using built-in
> encryption primitives.  So while in general you're right, in this case
> I'll respectfully disagree.  It may be convenient but it's not secure.

If an attacker can read the bytes sent over a pipe between your Emacs
and its GPG subprocess, you've already lost. I'm not sure what
reasonable definition of "secure" you meant to use here.