emacs-devel
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Opportunistic STARTTLS in smtpmail.el

From: Daiki Ueno
Subject: Re: Opportunistic STARTTLS in smtpmail.el
Date: Thu, 02 Jun 2011 22:44:59 +0900
User-agent: Gnus/5.13 (Gnus v5.13) Emacs/23.3 (gnu/linux) 
Ted Zlatanov <address@hidden> writes:

> It will be less necessary as the first `auth-sources' choice, but still
> useful, as Robert noted (I see case 2 as "encrypted tokens" since any
> token can be encrypted in my proposal).

Could you define the word "token"?  I have thought that it is an opaque
value which connects unencrypted data to encrypted data.  However, it
seems not.

> I'll simply make `auth-sources' ("~/.authinfo" "~/.authinfo.gpg")
>
> which as a default will work fine.  Creation prompts will target the
> first one.  The users can put insecure or token-encrypted data in the
> first one and use the second one for more secure storage.

Though I can't say anything without the detail of your proposal, I feel
you are oversimplifying.

Anyway I will be happy if:

- Gnus does not ask password when connecting to password-less services
- Gnus does not store my passwords in plain text files by default
- Gnus can hide server or user names (or other attributes) if necessary

Otherwise, no persistent password store is much better for me...

Regards,
-- 
Daiki Ueno
reply via email to
[Prev in Thread] Current Thread [Next in Thread]