[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Opportunistic STARTTLS in smtpmail.el

From: Lars Magne Ingebrigtsen
Subject: Re: Opportunistic STARTTLS in smtpmail.el
Date: Tue, 31 May 2011 20:19:54 +0200
User-agent: Gnus/5.110018 (No Gnus v0.18) Emacs/24.0.50 (gnu/linux)

Ted Zlatanov <address@hidden> writes:

> s/auth-info/auth-source/g right?

Yes.  :-)

> IOW rather than your "secret" token, let's keep the existing tokens but
> the netrc backend of auth-source will know that when it sees "xyz
> gpg:<hex data>" it needs to decode that hex data.

I don't know how gpg works here.  Does gpg-encrypting the same string
give you identical results, or does gpg auto-salt things?  The idea with
putting several tokens into the secret part was to 1) make it more
difficult to brute-force, and 2) make it possible to salt the string, so
that if you have two services with the same user-name/password, the
secret tokens would not be identical.

> We should provide a general mode that can show the file with all the
> gpg:<hex data> locations replaced, showing the decrypted data with text
> overlays and different colors.  The mode could also edit the encrypted
> data inline.  This would be very useful for all of Emacs, not just
> auth-source.  Sort of a scratch pad with arbitrary encryption intervals.
> With such a mode, a lot less direct auth-source support will be needed
> for these encrypted tokens.  The netrc backend would simply use the
> general mode.

Sounds way too complicated, I think.  The usage at hand is the netrc
file format, and I don't think it would have much utility beyond that.

Besides, adding this to netrc would be really trivial.  Making it
general would be difficult.

(domestic pets only, the antidote for overdose, milk.)
  bloggy blog http://lars.ingebrigtsen.no/

reply via email to

[Prev in Thread] Current Thread [Next in Thread]