From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Ted Zlatanov Newsgroups: gmane.emacs.bugs Subject: bug#15553: 24.3.50; epg.el and GnuPG 2.x cause unavoidable pinentry prompts for symmetrically encrypted files Date: Mon, 07 Oct 2013 21:01:06 -0400 Organization: =?UTF-8?Q?=D0=A2=D0=B5=D0=BE=D0=B4=D0=BE=D1=80_?= =?UTF-8?Q?=D0=97=D0=BB=D0=B0=D1=82=D0=B0=D0=BD=D0=BE=D0=B2?= @ Cienfuegos Message-ID: <874n8szict.fsf@flea.lifelogs.com> References: <87mwml0xib.fsf@flea.lifelogs.com> <87a9ikwsbi.fsf-ueno-ueno@gnu.org> NNTP-Posting-Host: plane.gmane.org Mime-Version: 1.0 Content-Type: text/plain X-Trace: ger.gmane.org 1381194075 20856 80.91.229.3 (8 Oct 2013 01:01:15 GMT) X-Complaints-To: usenet@ger.gmane.org NNTP-Posting-Date: Tue, 8 Oct 2013 01:01:15 +0000 (UTC) Cc: ueno@gnu.org To: 15553@debbugs.gnu.org Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Tue Oct 08 03:01:18 2013 Return-path: Envelope-to: geb-bug-gnu-emacs@m.gmane.org Original-Received: from lists.gnu.org ([208.118.235.17]) by plane.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1VTLfo-0005hN-Vp for geb-bug-gnu-emacs@m.gmane.org; Tue, 08 Oct 2013 03:01:17 +0200 Original-Received: from localhost ([::1]:34128 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1VTLfn-00088K-QL for geb-bug-gnu-emacs@m.gmane.org; Mon, 07 Oct 2013 21:01:15 -0400 Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:54654) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1VTLff-00087t-NN for bug-gnu-emacs@gnu.org; Mon, 07 Oct 2013 21:01:12 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1VTLfa-0000AZ-K4 for bug-gnu-emacs@gnu.org; Mon, 07 Oct 2013 21:01:07 -0400 Original-Received: from debbugs.gnu.org ([140.186.70.43]:53208) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1VTLfa-0000AM-E1 for bug-gnu-emacs@gnu.org; Mon, 07 Oct 2013 21:01:02 -0400 Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.80) (envelope-from ) id 1VTLfa-0002Bm-1b for bug-gnu-emacs@gnu.org; Mon, 07 Oct 2013 21:01:02 -0400 X-Loop: help-debbugs@gnu.org Resent-From: Ted Zlatanov Original-Sender: "Debbugs-submit" Resent-CC: bug-gnu-emacs@gnu.org Resent-Date: Tue, 08 Oct 2013 01:01:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 15553 X-GNU-PR-Package: emacs X-GNU-PR-Keywords: notabug Original-Received: via spool by 15553-submit@debbugs.gnu.org id=B15553.13811940618407 (code B ref 15553); Tue, 08 Oct 2013 01:01:01 +0000 Original-Received: (at 15553) by debbugs.gnu.org; 8 Oct 2013 01:01:01 +0000 Original-Received: from localhost ([127.0.0.1]:33268 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VTLfY-0002BX-HG for submit@debbugs.gnu.org; Mon, 07 Oct 2013 21:01:00 -0400 Original-Received: from mail-qe0-f52.google.com ([209.85.128.52]:58019) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VTLfV-0002BN-KQ for 15553@debbugs.gnu.org; Mon, 07 Oct 2013 21:00:58 -0400 Original-Received: by mail-qe0-f52.google.com with SMTP id w7so1842985qeb.11 for <15553@debbugs.gnu.org>; Mon, 07 Oct 2013 18:00:56 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lifelogs.com; s=google; h=from:to:cc:subject:organization:references:mail-copies-to :gmane-reply-to-list:date:in-reply-to:message-id:user-agent :mime-version:content-type; bh=UHO0WpoghLn9384Cg4iG3YZ8hLTCK03TX9e903YFelM=; b=n/D1TwGrGEaY2rO1bwNMARuVTwflD76ysFUT2rRhLT2pLjPdkN1vJUPhSkbfqKXbLT rWNGl+btWXQZzh9B+0LQaTXqiBP8oahtCI44rtGPf+aqJEOc+g73sQgWB2hcLgCUKF9m WoEWmb8D5ohwIKUC2n3085tQ4LThe9ml/fCx0= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:from:to:cc:subject:organization:references :mail-copies-to:gmane-reply-to-list:date:in-reply-to:message-id :user-agent:mime-version:content-type; bh=UHO0WpoghLn9384Cg4iG3YZ8hLTCK03TX9e903YFelM=; b=LymnOC6CWmgpvBLF2d4bBTqQriJ+emuMumXEAXy64NLBa+whRg3LSnXmFYYsuuQ48X yemr3JM15JJvzp5wp4fVCQqB0c4vS8HCAZ60XpZqbPVGodxr5cobX8aGz/i/JdQRgo50 Ar6BW+MoDUfXnZX+h52ja2ZyshGFMiijiUhFaHMGPPVoNLdHac4SV8Zz+yL42MBGrayo RW3E141u3ntUsQpkkzFM17F0Z9o+FggK70OQWFAHxt3QfMwYCqypRMzt+gLhTTbsm5TW EP2BlSjd0GgvDAXGr/6/eNR7ZN4WImyV0W5m94SDMgiQu6rPAg7h2NwissoPoyIn76ZO ys8w== X-Gm-Message-State: ALoCoQmF9FKDXGCdt4HiXQ/r+gl1nsPW2izfnVK/YakpZkwJzo5qd6hGL43Fe42Y3zb085HZMFTI X-Received: by 10.224.5.137 with SMTP id 9mr347173qav.65.1381194056848; Mon, 07 Oct 2013 18:00:56 -0700 (PDT) Original-Received: from flea.lifelogs.com (c-98-229-61-72.hsd1.ma.comcast.net. [98.229.61.72]) by mx.google.com with ESMTPSA id 4sm65714034qak.11.1969.12.31.16.00.00 (version=TLSv1.2 cipher=RC4-SHA bits=128/128); Mon, 07 Oct 2013 18:00:56 -0700 (PDT) X-Face: bd.DQ~'29fIs`T_%O%C\g%6jW)yi[zuz6; d4V0`@y-~$#3P_Ng{@m+e4o<4P'#(_GJQ%TT= D}[Ep*b!\e,fBZ'j_+#"Ps?s2!4H2-Y"sx" Mail-Copies-To: never Gmane-Reply-To-List: yes In-Reply-To: <87a9ikwsbi.fsf-ueno-ueno@gnu.org> (Daiki Ueno's message of "Tue, 08 Oct 2013 08:54:17 +0900") User-Agent: Gnus/5.130008 (Ma Gnus v0.8) Emacs/24.3.50 (gnu/linux) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list X-detected-operating-system: by eggs.gnu.org: GNU/Linux 3.x X-Received-From: 140.186.70.43 X-BeenThere: bug-gnu-emacs@gnu.org List-Id: "Bug reports for GNU Emacs, the Swiss army knife of text editors" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Original-Sender: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.bugs:79009 Archived-At: On Tue, 08 Oct 2013 08:54:17 +0900 Daiki Ueno wrote: DU> Teodor Zlatanov writes: >> 1. Install GnuPG 2.x, don't run gpg-agent >> 2. Open file.gpg, X or curses pinentry dialog pops up >> >> The suggested workaround is to run gpg-agent. DU> So you can workaround, what's your problem? See below. >> Problems: >> >> - on a headless server this can lock up Emacs DU> Not a problem if you use the workaround. >> - if the GPG agent is dead, locked up, or not running, there's no remedy DU> Ditto. Look. gpg-agent is an external daemon. Kill it manually or it dies accidentally or it blocks for whatever reason. Now the user has no access to their secret data and Emacs could even completely lock up. You're assuming access to a resource that you can't verify (gpg-agent). Or rather, GnuPG is depending on it. >> - there's no way to avoid the prompt in favor of an Emacs minibuffer query DU> As I said a number of times, that degrades security. If the insecurity DU> is okay for you, what's the reason you want to use GnuPG 2.x rather than DU> GnuPG 1.x? I'd rather not use either but have no choice right now. I would like to avoid the GnuPG dependency altogether as I've explained. Anyhow, I was hoping that GnuPG 2.x can provide a special option (as we've discussed that you could propose) to make this possible. If that's not your interest, then let's just call this one done as a "user misunderstanding of basic security" or whatever you like. Thanks for your time Ted