From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Chong Yidong Newsgroups: gmane.emacs.devel Subject: Re: Fix needed for communication with gpg-agent Date: Wed, 21 Feb 2007 07:04:32 -0500 Message-ID: <87lkirpvhr.fsf@stupidchicken.com> References: <87irdzs6pp.fsf@stupidchicken.com> <87fy91g1pl.fsf@catnip.gol.com> <873b50g7um.fsf@stupidchicken.com> NNTP-Posting-Host: lo.gmane.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Trace: sea.gmane.org 1172059531 20139 80.91.229.12 (21 Feb 2007 12:05:31 GMT) X-Complaints-To: usenet@sea.gmane.org NNTP-Posting-Date: Wed, 21 Feb 2007 12:05:31 +0000 (UTC) Cc: emacs-devel@gnu.org, miles@gnu.org To: rms@gnu.org Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Wed Feb 21 13:05:25 2007 Return-path: Envelope-to: ged-emacs-devel@m.gmane.org Original-Received: from lists.gnu.org ([199.232.76.165]) by lo.gmane.org with esmtp (Exim 4.50) id 1HJqDW-00021r-Sq for ged-emacs-devel@m.gmane.org; Wed, 21 Feb 2007 13:05:08 +0100 Original-Received: from localhost ([127.0.0.1] helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1HJqDW-0007fL-EH for ged-emacs-devel@m.gmane.org; Wed, 21 Feb 2007 07:05:02 -0500 Original-Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43) id 1HJqDH-0007bW-0E for emacs-devel@gnu.org; Wed, 21 Feb 2007 07:04:47 -0500 Original-Received: from [199.232.76.173] (helo=monty-python.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1HJqDG-0007bB-Ca for emacs-devel@gnu.org; Wed, 21 Feb 2007 07:04:46 -0500 Original-Received: from south-station-annex.mit.edu ([18.72.1.2]) by monty-python.gnu.org with esmtps (TLS-1.0:DHE_RSA_AES_256_CBC_SHA:32) (Exim 4.52) id 1HJqDF-0001pE-Qm; Wed, 21 Feb 2007 07:04:46 -0500 Original-Received: from central-city-carrier-station.mit.edu (CENTRAL-CITY-CARRIER-STATION.MIT.EDU [18.7.7.72]) by south-station-annex.mit.edu (8.13.6/8.9.2) with ESMTP id l1LC4isk014405; Wed, 21 Feb 2007 07:04:44 -0500 (EST) Original-Received: from outgoing-legacy.mit.edu (OUTGOING-LEGACY.MIT.EDU [18.7.22.104]) by central-city-carrier-station.mit.edu (8.13.6/8.9.2) with ESMTP id l1LC4YhB012283; Wed, 21 Feb 2007 07:04:35 -0500 (EST) Original-Received: from localhost (SYDNEYPACIFIC-TWO-SEVENTEEN.MIT.EDU [18.95.5.217]) ) by outgoing-legacy.mit.edu (8.13.6/8.12.4) with ESMTP id l1LC4Wrp019494; Wed, 21 Feb 2007 07:04:34 -0500 (EST) Original-Received: from cyd by localhost with local (Exim 3.36 #1 (Debian)) id 1HJqD2-0000gL-00; Wed, 21 Feb 2007 07:04:32 -0500 In-Reply-To: (Richard Stallman's message of "Wed\, 21 Feb 2007 03\:37\:51 -0500") User-Agent: Gnus/5.11 (Gnus v5.11) Emacs/22.0.93 (gnu/linux) X-Scanned-By: MIMEDefang 2.42 X-Spam-Score: -2.599 X-detected-kernel: Solaris 9.1 X-BeenThere: emacs-devel@gnu.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Emacs development discussions." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Original-Sender: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.devel:66578 Archived-At: Richard Stallman writes: > I think he could also walk up to your terminal after you have entered > the passphrase, and get it out of data remaining in Emacs. > > In the discussion when this was raised, people seemed to agree > it was a problem we should fix. And the only fix was to avoid > storing passphrases in Emacs. There is more than one way to fix that. Since no one seems to have an idea of how to handle the console/pinentry case, let's just disable password caching on text terminals, and disabling use of gpg-agent on text terminals, by default. We can suggest a workaround in the PGG manual, and tell people to enter a passphrase into pinentry before starting Emacs, if they want to use PGG with gpg-agent on a text terminal.