bug#9113: 24.0.50; auth-sources: .authinfo versus .authinfo.gpg, bug#9113: 24.0.50; auth-sources: .authinfo versus .authinfo.gpg, bug#9113: 24.0.50; auth-sources: .authinfo versus .authinfo.gpg

all messages for Emacs-related lists mirrored at yhetil.org
 help / color / mirror / code / Atom feed

From: Daiki Ueno <ueno@unixuser.org>
To: Achim Gratz <Stromeko@nexgo.de>
Cc: 9113@debbugs.gnu.org, Lars Ingebrigtsen <larsi@gnus.org>,
	Roland Winkler <winkler@gnu.org>
Subject: bug#9113: 24.0.50; auth-sources: .authinfo versus .authinfo.gpg, bug#9113: 24.0.50; auth-sources: .authinfo versus .authinfo.gpg, bug#9113: 24.0.50; auth-sources: .authinfo versus .authinfo.gpg
Date: Fri, 27 Jan 2012 10:47:32 +0900	[thread overview]
Message-ID: <m3ty3hkjbf.fsf-ueno@unixuser.org> (raw)
In-Reply-To: <87bopq6xng.fsf@lifelogs.com> (Ted Zlatanov's message of "Thu, 26 Jan 2012 14:01:39 -0600")

Ted Zlatanov <tzz@lifelogs.com> writes:

>>>> 2) use unencrypted authinfo with encrypted password tokens, which
>>>> looks like this:
>>> 
>>>> machine supertest password
>>>> gpg:jA0EAwMC2tUEaZgM7A5gyWM/owySdCOS/cjoFCuf8LI1d1kYX7z6cjsNkakM04u1geh/iesqyH3XQFI+SEVLb/oEC/EoQ0LIgRRoBiLyu9XZWN1ytY7MQxpPZniFz13oGV4/Dwl8yrP3Hba5LfQpHy2FZRM=
>
> It works fairly well but it's hacky, and can't be shared with other
> programs.  I'd like to implement it with libnettle at least, so it
> doesn't depend on the external gpg utility.  But yes, we could do this
> one and it would work on all platforms with libnettle.

I remember there were a couple of concerns:

(1) it also doesn't work with GnuPG2 at all (have you tested it?)
(2) even with libnettle, you need to implement OpenPGP packet handling
    if you want to keep the data compatibility with GPG (I don't think
    it is a good idea to reinvent another encrypted data format with
    plist as you proposed)

BTW,

>>> IIRC for 23 the default was to keep the password for the current session
>>> and not to store it in any file at all.  I think it's a better default
>>> than writing it in clear in some file, so at least for 24.1 reverting to
>>> the Emacs-23 default is very attractive.
>
> LI> Well, Emacs 23 just made you write the .authinfo file by hand.  Emacs 24
> LI> prompts you for whether you want to store the password or not.  If you
> LI> don't want to, say "n".

Even then, it is combersome for me to type "n" to proceed to the next
step (i.e. accessing smtp, etc).  Firefox allows user to keep browsing
password protected Web pages without answering the question immediately.

How about:

(1) add M-x auth-source-save command to save passwords manually
(2) (message "Type \\[auth-source-save] to save your passwords to file")
    instead of the question

Regards,
-- 
Daiki Ueno

next prev parent reply	other threads:[~2012-01-27  1:47 UTC|newest]

Thread overview: 31+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2011-07-18  3:08 bug#9113: 24.0.50; auth-sources: .authinfo versus .authinfo.gpg Roland Winkler
2012-01-25 20:18 ` Ted Zlatanov
2012-01-26  2:02   ` Stefan Monnier
2012-01-26 15:32     ` Ted Zlatanov
2012-01-26 17:28       ` Stefan Monnier
2012-01-26 17:52         ` Lars Ingebrigtsen
2012-01-26 17:53       ` Achim Gratz
2012-01-26 20:01         ` bug#9113: 24.0.50; auth-sources: .authinfo versus .authinfo.gpg, bug#9113: 24.0.50; auth-sources: .authinfo versus .authinfo.gpg, " Ted Zlatanov
2012-01-26 21:41           ` Stefan Monnier
2012-01-30 16:36             ` Lars Ingebrigtsen
2012-01-30 22:18               ` Stefan Monnier
2012-01-30 22:21                 ` Lars Ingebrigtsen
2012-01-31  9:00                 ` Michael Albinus
2012-01-31 17:51                   ` Stefan Monnier
2012-02-13 17:35                     ` Ted Zlatanov
2012-02-13 18:35                       ` Michael Albinus
2012-01-27  1:47           ` Daiki Ueno [this message]
2012-01-27 16:23             ` Ted Zlatanov
2012-01-29  9:50               ` Daiki Ueno
2012-01-30 16:33           ` bug#9113: 24.0.50; auth-sources: .authinfo versus .authinfo.gpg, bug#9113: 24.0.50; auth-sources: .authinfo versus .authinfo.gpg, " Lars Ingebrigtsen
2012-01-31  6:55             ` Chong Yidong
2012-01-31 11:57               ` Lars Ingebrigtsen
2012-02-03 17:14                 ` Kevin Rodgers
2012-01-31 11:11             ` Ted Zlatanov
2012-01-31 11:37               ` Michael Albinus
2012-02-13 17:38                 ` Ted Zlatanov
2012-01-28  8:47       ` Roland Winkler
2012-01-28 19:05         ` Lars Ingebrigtsen
2012-01-28 19:32           ` Roland Winkler
2012-01-30 16:18             ` Lars Ingebrigtsen
2012-01-30 18:49               ` Roland Winkler

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=m3ty3hkjbf.fsf-ueno@unixuser.org \
    --to=ueno@unixuser.org \
    --cc=9113@debbugs.gnu.org \
    --cc=Stromeko@nexgo.de \
    --cc=larsi@gnus.org \
    --cc=winkler@gnu.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

Code repositories for project(s) associated with this external index

	https://git.savannah.gnu.org/cgit/emacs.git
	https://git.savannah.gnu.org/cgit/emacs/org-mode.git

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.