On 7/17/2015 6:37 AM, Elmar mc.fly Lecher wrote: > Heyho > > On 17.07.2015 12:25, David wrote: >> I understand the reasoning but I too dislike this. My simple >> solution, which could be a major security problem for you but is >> not for me is to set --default-cache-ttl to a really large >> number. The value of --default-cache-ttl is the time to >> 'remember' the pass phase in seconds. The default is 600 (10 >> minutes). There are 60 seconds in one minute and 60 minutes in one >> hour so 60x60=3600. So --default-cache-ttl 3600 would remember >> the password for one hour. Adjust the setting to fit your needs. > > That can be several hours. My computer runs over night for a reason. > > The only real solution there would be to disable the passphrase and > that should securitywise - alongside with a really large remember time > - not be done because thats actually really bad. > > My solution so far is killall thunderbird in the morning. > > I would like to see more things like: > "if there is a popup open - don't open another one." > > "if a mail just gets filtered through to a folder don't ask for the > passphrase" (the facebook mail) > > I see ways how to bypass my problems and they are securitywise bad. > > And i see possible improvements - in gpg-agent / pinentry and also > enigmail. > > But it does not make sense to file a bug in any of the projects as > long as there is no consensus that this is actually a bad User > Experience decision where it could make sense to reconsider how things > work there. > > > just my 0.02eur > > mc.fly
The developers see this as a security feature and not a bug. I don't see it as a bug either. I see it as an annoyance that makes my personal setup less secure when I deal with it. -- David
signature.asc
Description: OpenPGP digital signature
_______________________________________________ enigmail-users mailing list [email protected] To unsubscribe or make changes to your subscription click here: https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net
