From mboxrd@z Thu Jan 1 00:00:00 1970 From: Carsten Dominik Subject: Re: Feature request: Selective encryption Date: Sat, 1 Sep 2007 12:29:49 +0200 Message-ID: References: Mime-Version: 1.0 (Apple Message framework v624) Content-Type: text/plain; charset=US-ASCII; format=flowed Content-Transfer-Encoding: 7bit Return-path: Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43) id 1IRQFf-0005BZ-0h for emacs-orgmode@gnu.org; Sat, 01 Sep 2007 06:30:51 -0400 Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43) id 1IRQFc-0005AD-EL for emacs-orgmode@gnu.org; Sat, 01 Sep 2007 06:30:49 -0400 Received: from [199.232.76.173] (helo=monty-python.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1IRQFc-0005A7-5Y for emacs-orgmode@gnu.org; Sat, 01 Sep 2007 06:30:48 -0400 Received: from korteweg.uva.nl ([146.50.98.70]) by monty-python.gnu.org with esmtp (Exim 4.60) (envelope-from ) id 1IRQFb-0002jh-PJ for emacs-orgmode@gnu.org; Sat, 01 Sep 2007 06:30:48 -0400 In-Reply-To: List-Id: "General discussions about Org-mode." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Sender: emacs-orgmode-bounces+geo-emacs-orgmode=m.gmane.org@gnu.org Errors-To: emacs-orgmode-bounces+geo-emacs-orgmode=m.gmane.org@gnu.org To: John Wiegley Cc: emacs-orgmode@gnu.org On Aug 31, 2007, at 21:28, John Wiegley wrote: > Carsten Dominik writes: > >> I do think this would be a useful feature. Some properties I'd find >> useful: >> >> - Use symmetric encryption >> >> - Be able to recognize if an entry is encrypted >> >> - Leave the headline of the entry alone and only encrypt the text >> below it >> and the subtree, if present >> >> - Support something like a CRYPT tag, leading to automatic encryption >> when >> the file is saved, to make sure encrypted entries are never saved in >> clear >> text. >> >> - Use only a single password per file, so once one entry is decrypted, >> others will open without an additional password prompt. >> >> Something like this. > > Yes, this is just what I'm thinking too, though I'd like the option of > binding > different CRYPT tags to different keys or passwords. So, I could have > WORK_CRYPT, HOME_CRYPT, etc., and each would have its own separate > protection. > This would allow multiple people to have their own private regions > within the > same org-mode file. Excellent idea, I did not think about this possibility. > I should be able to create an external module for this that does not > affect > org.el at all, but just adds keybindings to org-mode-map and > after-save-hook. Cool. Please do! I have tried to read the allout documentation about it and found it entirely undigestible for the cryptographically uninitiated. I hope you can explain it better. - Carsten