From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Ted Zlatanov Newsgroups: gmane.emacs.bugs Subject: bug#15552: 24.3.50; epa-file-cache-passphrase-for-symmetric-encryption not respected with GnuPG 2.x Date: Mon, 07 Oct 2013 20:46:34 -0400 Organization: =?UTF-8?Q?=D0=A2=D0=B5=D0=BE=D0=B4=D0=BE=D1=80_?= =?UTF-8?Q?=D0=97=D0=BB=D0=B0=D1=82=D0=B0=D0=BD=D0=BE=D0=B2?= @ Cienfuegos Message-ID: <878uy4zj11.fsf@flea.lifelogs.com> References: <87r4bx0xsk.fsf@flea.lifelogs.com> <87fvscwswx.fsf-ueno-ueno@gnu.org> NNTP-Posting-Host: plane.gmane.org Mime-Version: 1.0 Content-Type: text/plain X-Trace: ger.gmane.org 1381193234 11484 80.91.229.3 (8 Oct 2013 00:47:14 GMT) X-Complaints-To: usenet@ger.gmane.org NNTP-Posting-Date: Tue, 8 Oct 2013 00:47:14 +0000 (UTC) Cc: ueno@gnu.org To: 15552@debbugs.gnu.org Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Tue Oct 08 02:47:17 2013 Return-path: Envelope-to: geb-bug-gnu-emacs@m.gmane.org Original-Received: from lists.gnu.org ([208.118.235.17]) by plane.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1VTLSH-0002iq-0o for geb-bug-gnu-emacs@m.gmane.org; Tue, 08 Oct 2013 02:47:17 +0200 Original-Received: from localhost ([::1]:34100 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1VTLSG-0004aA-KC for geb-bug-gnu-emacs@m.gmane.org; Mon, 07 Oct 2013 20:47:16 -0400 Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:52074) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1VTLS7-0004a0-QM for bug-gnu-emacs@gnu.org; Mon, 07 Oct 2013 20:47:12 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1VTLS2-00056B-Ln for bug-gnu-emacs@gnu.org; Mon, 07 Oct 2013 20:47:07 -0400 Original-Received: from debbugs.gnu.org ([140.186.70.43]:53190) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1VTLS2-000562-IC for bug-gnu-emacs@gnu.org; Mon, 07 Oct 2013 20:47:02 -0400 Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.80) (envelope-from ) id 1VTLS2-0001rP-2z for bug-gnu-emacs@gnu.org; Mon, 07 Oct 2013 20:47:02 -0400 X-Loop: help-debbugs@gnu.org Resent-From: Ted Zlatanov Original-Sender: "Debbugs-submit" Resent-CC: bug-gnu-emacs@gnu.org Resent-Date: Tue, 08 Oct 2013 00:47:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 15552 X-GNU-PR-Package: emacs X-GNU-PR-Keywords: notabug Original-Received: via spool by 15552-submit@debbugs.gnu.org id=B15552.13811931987116 (code B ref 15552); Tue, 08 Oct 2013 00:47:01 +0000 Original-Received: (at 15552) by debbugs.gnu.org; 8 Oct 2013 00:46:38 +0000 Original-Received: from localhost ([127.0.0.1]:33250 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VTLRd-0001qg-Mq for submit@debbugs.gnu.org; Mon, 07 Oct 2013 20:46:38 -0400 Original-Received: from mail-qe0-f46.google.com ([209.85.128.46]:38631) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VTLRR-0001qM-Ri for 15552@debbugs.gnu.org; Mon, 07 Oct 2013 20:46:34 -0400 Original-Received: by mail-qe0-f46.google.com with SMTP id x7so6014048qeu.5 for <15552@debbugs.gnu.org>; Mon, 07 Oct 2013 17:46:25 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lifelogs.com; s=google; h=from:to:cc:subject:organization:references:mail-copies-to :gmane-reply-to-list:date:in-reply-to:message-id:user-agent :mime-version:content-type; bh=QMqx+L3/JactKfToTR3seCnDyKC9OUHzhVqhllitGxg=; b=mzkEfHkPjIfnRvXkDvHVX5G4+sR2FjPWjt2abKf1tC9xu0thIHjMLaXs5+5tDnlqsZ iMgpCbdLQz9DC7z2zl3h7krpFrn19hRi6qS6WDdT2WihUF1Eo6MImwlIeGwvQDlG1DJY 96a1JNotO1x3v0B1opCT85xzRsFlJqURxXDnc= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:from:to:cc:subject:organization:references :mail-copies-to:gmane-reply-to-list:date:in-reply-to:message-id :user-agent:mime-version:content-type; bh=QMqx+L3/JactKfToTR3seCnDyKC9OUHzhVqhllitGxg=; b=aszHNPJKm6bKdH/jEA+3uh/iTRyxx2U/c3k5BrwJeYM9zDC4pFB1xRTtI0+w2nnx9f 2z+mQuHpNS2S7az2qteNiuG/MGdX0XiVmkef9v38OxHaGgbi5lMnjJ+9k30S27pQns/r fTadSMmZ8vJXyfUjIJU0tLXeR5HvSbZGTK0f9a67eIrht9ieLnKPQn6xmBSBnlLpaRVI u8BvqhoZQX16fkeiXkHVrS65Y7k+kcQWrxOfrpGWUYGKf5nuxfdoCdmUpsjhK6zLyX9m 0SSKEjT39AJVLcwMr1219MRLgUMGo3HVPcAVzQe9etWmx414Eni1jO+ynSvY1Fmj9vCH Vysw== X-Gm-Message-State: ALoCoQkN1GQubkn+9sBd5HJaR2rlmS7ovUjY4rRvLpOdZY1X95XOipoFvsu1n11/PhTmxcOCxhdE X-Received: by 10.49.24.74 with SMTP id s10mr40723342qef.24.1381193185118; Mon, 07 Oct 2013 17:46:25 -0700 (PDT) Original-Received: from flea.lifelogs.com (c-98-229-61-72.hsd1.ma.comcast.net. [98.229.61.72]) by mx.google.com with ESMTPSA id l4sm68307716qae.4.1969.12.31.16.00.00 (version=TLSv1.2 cipher=RC4-SHA bits=128/128); Mon, 07 Oct 2013 17:46:24 -0700 (PDT) X-Face: bd.DQ~'29fIs`T_%O%C\g%6jW)yi[zuz6; d4V0`@y-~$#3P_Ng{@m+e4o<4P'#(_GJQ%TT= D}[Ep*b!\e,fBZ'j_+#"Ps?s2!4H2-Y"sx" Mail-Copies-To: never Gmane-Reply-To-List: yes In-Reply-To: <87fvscwswx.fsf-ueno-ueno@gnu.org> (Daiki Ueno's message of "Tue, 08 Oct 2013 08:41:40 +0900") User-Agent: Gnus/5.130008 (Ma Gnus v0.8) Emacs/24.3.50 (gnu/linux) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list X-detected-operating-system: by eggs.gnu.org: GNU/Linux 3.x X-Received-From: 140.186.70.43 X-BeenThere: bug-gnu-emacs@gnu.org List-Id: "Bug reports for GNU Emacs, the Swiss army knife of text editors" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Original-Sender: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.bugs:79008 Archived-At: On Tue, 08 Oct 2013 08:41:40 +0900 Daiki Ueno wrote: DU> tags 15552 notabug DU> thanks DU> Teodor Zlatanov writes: >> 1. On the local system, install GnuPG 2.x and don't run the gpg-agent >> 2. Set epa-file-cache-passphrase-for-symmetric-encryption to t >> 3. Open file.gpg: password dialog pops up >> 4. close file.gpg >> 5. Open file.gpg: password dialog pops up again >> >> Step (5) should not prompt. It works properly with GnuPG 1.x. DU> That's intended behavior. It is documented and I stated a number of DU> times the reason and why I chose such a lengthy name of the variable and DU> the default is nil: DU> 1. Emacs heap is not so secure DU> 2. Using Emacs for password input degrades the security (please note I opened this at Stefan's request; I knew you wouldn't be interested in resolving it) I appreciate your concern for security, but the behavior is broken from a user's perspective and you make no effort to help at the time the issue occurs. You could, for instance, check the GnuPG version and be helpful. At least fix the docstring and maybe emit a message to be helpful about it. There's no mention that it breaks with GnuPG 2.x: epa-file-cache-passphrase-for-symmetric-encryption is a variable defined in `epa-file.el'. Its value is t Original value was nil Documentation: If non-nil, cache passphrase for symmetric encryption. For security reasons, this option is turned off by default and not recommended to use. Instead, consider using public-key encryption with gpg-agent which does the same job in a safer way. DU> You never hear or remember. Right, thanks again. Ted