[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Storing sensitive data indefinitely in variables or buffers: Whether
|
From: |
Eli Zaretskii |
|
Subject: |
Re: Storing sensitive data indefinitely in variables or buffers: Whether and how to fix? |
|
Date: |
Thu, 01 Jun 2023 10:33:18 +0300 |
> From: Ihor Radchenko <yantar92@posteo.net>
> Cc: adam@alphapapa.net, emacs-devel@gnu.org, jschmidt4gnu@vodafonemail.de
> Date: Thu, 01 Jun 2023 07:29:55 +0000
>
> > ... Cryptography, by contrast, is hard, so
> > we should use industry-strength implementations by experts for that,
> > and I think GnuTLS is a good candidate for that part, especially since
> > Emacs without GnuTLS is severely limited anyway (so we could assume
> > "almost everyone" have it).
>
> I agree.
> Is Emacs built with GnuTLS support by default?
GnuTLS will be compiled in by default if it's available, yes.
> Another question about encryption is which secret should be used?
> Should it be configurable by users? Should it be the same for the whole
> secure storage? More granular? May encryption be disabled by users?
This should probably be controlled by some user option.
- Re: Storing sensitive data indefinitely in variables or buffers: Whether and how to fix?, (continued)
Re: Storing sensitive data indefinitely in variables or buffers: Whether and how to fix?, Ihor Radchenko, 2023/06/01