From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from localhost (localhost [127.0.0.1]) by olra.theworths.org (Postfix) with ESMTP id ECBB2429E36 for ; Wed, 25 Jan 2012 11:09:39 -0800 (PST) X-Virus-Scanned: Debian amavisd-new at olra.theworths.org X-Spam-Flag: NO X-Spam-Score: 0 X-Spam-Level: X-Spam-Status: No, score=0 tagged_above=-999 required=5 tests=[none] autolearn=disabled Received: from olra.theworths.org ([127.0.0.1]) by localhost (olra.theworths.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RETEvMc1flE3 for ; Wed, 25 Jan 2012 11:09:39 -0800 (PST) Received: from che.mayfirst.org (che.mayfirst.org [209.234.253.108]) by olra.theworths.org (Postfix) with ESMTP id 4010C431FBC for ; Wed, 25 Jan 2012 11:09:39 -0800 (PST) Received: from [192.168.23.207] (dsl254-070-154.nyc1.dsl.speakeasy.net [216.254.70.154]) by che.mayfirst.org (Postfix) with ESMTPSA id B899FF970; Wed, 25 Jan 2012 14:09:33 -0500 (EST) Message-ID: <4F205368.4020402@fifthhorseman.net> Date: Wed, 25 Jan 2012 14:09:28 -0500 From: Daniel Kahn Gillmor User-Agent: Mozilla/5.0 (X11; Linux i686; rv:8.0) Gecko/20120104 Icedove/8.0 MIME-Version: 1.0 To: Jameson Graef Rollins Subject: Re: Emacs: Crypto: How to get automatic encryption? References: <87pqejj5nl.fsf@marcos.anarcat.ath.cx> <87ehuo7pjr.fsf@algae.riseup.net> <87ehuoljzs.fsf@servo.finestructure.net> <87liow6slg.fsf@servo.finestructure.net> <878vkv7k2q.fsf@servo.finestructure.net> In-Reply-To: <878vkv7k2q.fsf@servo.finestructure.net> X-Enigmail-Version: 1.3.4 Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="------------enigA0474EB29AD29C958F179AF8" Cc: Notmuch Mail X-BeenThere: notmuch@notmuchmail.org X-Mailman-Version: 2.1.13 Precedence: list List-Id: "Use and development of the notmuch mail system." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 25 Jan 2012 19:09:40 -0000 This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enigA0474EB29AD29C958F179AF8 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable On 01/25/2012 12:45 PM, Jameson Graef Rollins wrote: > Here's a behavior that I think would be reasonable: >=20 > * notmuch reply outputs JSON encrypted flag >=20 > * emacs does a quick check to see if the needed key is available >=20 > * if key not available: give a nice mini-buffer prompt, something like= : > =20 > 'encryption key for "Foo Bar " not found. Retrieve?' >=20 > * if response is yes: call gpg to retrieve the key >=20 > * if key available: add encrypt flag >=20 > else: I feel like this should abort, but maybe there's something to > be done here. Allow reply but don't quote the original? I note from observing my own correspondence practices that there are some other heuristics that might be reasonable, if we're willing to be more sophisticated here too. For example: * if the entire encrypted message body was signed by key X (which we either have or fetch), and * X has a User ID which matches the address to which we're replying, and= * we don't have a technically-valid matching User ID for the e-mail address (so we wouldn't normally want to encrypt mail to key X), then we could offer (or default) to encrypt the reply to that key anyway, on the grounds that the keyholder in question knew the contents of the original message anyway. Some visual indication of being in this corner-case state would be nice, of course. While i'm dreaming, I'd also love to be able to get some statistics about how many messages in a given thread have this kind encryption/signing response. It would be interesting for some sort of measurement of e-mail+keyholding continuity, which would be useful in a more generalized contacts+crypto manager. --dkg --------------enigA0474EB29AD29C958F179AF8 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQJ8BAEBCgBmBQJPIFNoXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQwRUU1QkU5NzkyODJEODBCOUY3NTQwRjFD Q0QyRUQ5NEQyMTczOUU5AAoJEMzS7ZTSFznpLKoQAKDWSK5n/2YIkTtCVx5rNRWJ TW6H4TZTICVNlUKuI6wEPo6BEm1olMmd1yiSivdsHVso8MZs/OrXIdWv0M/4XRnh kVZfmFBjojIQz1eVurMtkfMXflpq1sB8a39iFSDjlbhAx5RFWt1HmUTfrv7vMXkc kHE9HJGntz5f7krDCK4oBps3bENRqJ/bj+kaxaRvi17QYOiJXUHe2rPkhl1gxIgF +B6zT5FdsIRJodlCzDs8EipztF8ZPPwHTxNUyQTnnOt2mkNsIghRUOMcsK686OSi uIWZmIEYfvJT0U+v2XMVrjw/Tk7WDxmJdjIKYXuH//I3XD8K+JhSykv8mHc3ror4 9xI+8S2brPQaifQlH3B7dG9TdknGvzVvTjqzOte+BwY5wJ59OgFw1XwYaHuSYZ66 /mNBuTs+ce3pRZnZeBfNP7AKDup0C5sLc8BCsiWhWTcMF+I7zgXIU7ilZre7lKnI CJ2zv/+2rqN+Fx+uSIYJjDjIkYLZyeBp6gruWfUSrYIldxe51UAEqDtf+BSdsxSp QpVfU8e2oBRM/a02uA0MEQhbzzT59M/a+Yu8Zo4YyYDagie7LzMPfOBRA49v4Z+g qBAn610Kc5gOItVvXDyaasFRJ+HhSkDmMnKD7EPnVh5M5YBVlA/bcVfy9dmz5YYk 8D5dL7Udv/Tt1fBQDYSW =MH2G -----END PGP SIGNATURE----- --------------enigA0474EB29AD29C958F179AF8--