From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Ted Zlatanov Newsgroups: gmane.emacs.devel Subject: Re: Opportunistic STARTTLS in smtpmail.el Date: Tue, 31 May 2011 19:37:50 -0500 Organization: =?utf-8?B?0KLQtdC+0LTQvtGAINCX0LvQsNGC0LDQvdC+0LI=?= @ Cienfuegos Message-ID: <878vtmo081.fsf@lifelogs.com> References: <8762ptue8r.fsf@lifelogs.com> <87k4e8ucw3.fsf@lifelogs.com> <87liyofwxp.fsf@lifelogs.com> <874o5cfui5.fsf@lifelogs.com> <87liyndz5l.fsf@lifelogs.com> <87y61nnpoq.fsf@lifelogs.com> <87fwnuacc5.fsf@lifelogs.com> NNTP-Posting-Host: lo.gmane.org Mime-Version: 1.0 Content-Type: text/plain X-Trace: dough.gmane.org 1306891033 23203 80.91.229.12 (1 Jun 2011 01:17:13 GMT) X-Complaints-To: usenet@dough.gmane.org NNTP-Posting-Date: Wed, 1 Jun 2011 01:17:13 +0000 (UTC) To: emacs-devel@gnu.org Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Wed Jun 01 03:17:08 2011 Return-path: Envelope-to: ged-emacs-devel@m.gmane.org Original-Received: from lists.gnu.org ([140.186.70.17]) by lo.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1QRa3X-0002fD-KI for ged-emacs-devel@m.gmane.org; Wed, 01 Jun 2011 03:17:07 +0200 Original-Received: from localhost ([::1]:50718 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1QRa3W-0002hh-8o for ged-emacs-devel@m.gmane.org; Tue, 31 May 2011 21:17:06 -0400 Original-Received: from eggs.gnu.org ([140.186.70.92]:51625) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1QRa37-0002gg-8b for emacs-devel@gnu.org; Tue, 31 May 2011 21:16:45 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1QRa31-000383-AJ for emacs-devel@gnu.org; Tue, 31 May 2011 21:16:40 -0400 Original-Received: from lo.gmane.org ([80.91.229.12]:58559) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1QRZRn-0003nZ-2t for emacs-devel@gnu.org; Tue, 31 May 2011 20:38:07 -0400 Original-Received: from list by lo.gmane.org with local (Exim 4.69) (envelope-from ) id 1QRZRi-0007ZB-6k for emacs-devel@gnu.org; Wed, 01 Jun 2011 02:38:02 +0200 Original-Received: from c-67-186-102-106.hsd1.il.comcast.net ([67.186.102.106]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Wed, 01 Jun 2011 02:38:02 +0200 Original-Received: from tzz by c-67-186-102-106.hsd1.il.comcast.net with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Wed, 01 Jun 2011 02:38:02 +0200 X-Injected-Via-Gmane: http://gmane.org/ Mail-Followup-To: emacs-devel@gnu.org Original-Lines: 48 Original-X-Complaints-To: usenet@dough.gmane.org X-Gmane-NNTP-Posting-Host: c-67-186-102-106.hsd1.il.comcast.net X-Face: bd.DQ~'29fIs`T_%O%C\g%6jW)yi[zuz6; d4V0`@y-~$#3P_Ng{@m+e4o<4P'#(_GJQ%TT= D}[Ep*b!\e,fBZ'j_+#"Ps?s2!4H2-Y"sx" Mail-Copies-To: never User-Agent: Gnus/5.110018 (No Gnus v0.18) Emacs/24.0.50 (gnu/linux) Cancel-Lock: sha1:3MEhwhErcFbLRYmZddw2Frxef3c= X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.6 (newer, 3) X-Received-From: 80.91.229.12 X-BeenThere: emacs-devel@gnu.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Emacs development discussions." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Original-Sender: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.devel:140007 Archived-At: On Tue, 31 May 2011 22:32:47 +0200 Lars Magne Ingebrigtsen wrote: LMI> Ted Zlatanov writes: >> I propose the hex data be the alist printed in the UTF-8 encoding, then >> converted to the unibyte conversion, encrypted, and hex-encoded. The >> next non-hex character (usually space or newline) ends the data. If we >> fail to decode it, we print a warning message. LMI> I think it would be nice if it was as short as possible, too, because LMI> this will be a blob of stuff in a file that people would be editing. LMI> Which is why I kinda like the LMI> secret gpg: idea. LMI> If we put all the secrets into the same blob, we can say stuff like LMI> pfoo^@ubar^@ssalt LMI> that is, make the token names really short (one character), and use NUL LMI> as the separator, so that we can put random other characters (including LMI> space) into the passwords... I understand. But it sucks from the `auth-source-search' perspective because now every secret blob has to be decoded to find out if it has tokens X or Y when the search spec requires X or Y. So I'm against it. >From the user's perspective, it's no good either because looking at the netrc file is not enough to tell what it contains, and this new format can't be used by any other programs besides Emacs. My format has the nice property that it degrades into a normal netrc file gracefully. It's trivial to write a bidirectional converter function, too. (Just to be clear: my proposed format is "login joe password gpg:ABCD123456" where the gpg: data decodes to ((data "mysecret") (salt "mysalt")) and no other values besides the data are used outside; a gpg: value can only yield one piece of data and only needs to be decoded when you need the actual data.) >> What do you need from me to get the above done, if you agree about the >> implementation? LMI> Well, I'd hoped that you'd implement this. :-) I hope we will agree on the format. I'll implement it when you give up arguing with me ;) Ted