[notmuch] indexing encrypted messages (was: OpenPGP support)

2010-01-14 Thread Olly Betts
On 2010-01-08, James Westby wrote: > That would leave an open question over whether future notmuch show > invocations would return the plaintext or ciphertext. If it is the > latter then it requires decrypting every time you want to view it, but > it does mean that there is less information

Re: [notmuch] indexing encrypted messages (was: OpenPGP support)

2010-01-14 Thread Olly Betts
On 2010-01-08, James Westby wrote: That would leave an open question over whether future notmuch show invocations would return the plaintext or ciphertext. If it is the latter then it requires decrypting every time you want to view it, but it does mean that there is less information leakage

[notmuch] indexing encrypted messages (was: OpenPGP support)

2010-01-10 Thread Ruben Pollan
On 14:41, Fri 08 Jan 10, micah anderson wrote: > On Fri, 8 Jan 2010 10:21:21 +0100, Ruben Pollan > wrote: > > On 15:56, Fri 08 Jan 10, martin f krafft wrote: > > > How about indexing GPG-encrypted messages? > > > > I think that would be security hole. You should not store the > > encrypted

Re: [notmuch] indexing encrypted messages (was: OpenPGP support)

2010-01-10 Thread Ruben Pollan
On 14:41, Fri 08 Jan 10, micah anderson wrote: On Fri, 8 Jan 2010 10:21:21 +0100, Ruben Pollan mes...@sindominio.net wrote: On 15:56, Fri 08 Jan 10, martin f krafft wrote: How about indexing GPG-encrypted messages? I think that would be security hole. You should not store the

[notmuch] indexing encrypted messages (was: OpenPGP support)

2010-01-08 Thread martin f krafft
also sprach Ruben Pollan [2010.01.08.2221 +1300]: > I think that would be security hole. You should not store the > encrypted messages on a decrypted database. A solution whould be > to encrypt as well the xapian DB, but I think is too complex for > the use. As I said in <20100108091216.GC735 at

[notmuch] indexing encrypted messages (was: OpenPGP support)

2010-01-08 Thread martin f krafft
also sprach Mike Hommey [2010.01.08.2109 +1300]: > That may leak decrypted form in the xapian index, though in > a split manner. But that'd still be a problem IMHO. Not for me, since the index is stored on encrypted media. Thus, this should be off-by-default, but

[notmuch] indexing encrypted messages (was: OpenPGP support)

2010-01-08 Thread martin f krafft
also sprach Jameson Graef Rollins [2009.11.26.1901 +1300]: > I would really like to start using notmuch with emacs beyond just > testing, but I really need to be able to handle/read/send mail with > PGP/MIME encoded attachments. Do folks have any suggestions on how to > handle this? Is there a

[notmuch] indexing encrypted messages (was: OpenPGP support)

2010-01-08 Thread micah anderson
On Fri, 8 Jan 2010 10:21:21 +0100, Ruben Pollan wrote: > On 15:56, Fri 08 Jan 10, martin f krafft wrote: > > How about indexing GPG-encrypted messages? > > I think that would be security hole. You should not store the > encrypted messages on a decrypted database. A solution whould be to >

[notmuch] indexing encrypted messages (was: OpenPGP support)

2010-01-08 Thread James Westby
On Fri, 8 Jan 2010 15:56:10 +1300, martin f krafft wrote: > also sprach Jameson Graef Rollins > [2009.11.26.1901 +1300]: > > I would really like to start using notmuch with emacs beyond just > > testing, but I really need to be able to handle/read/send mail with > > PGP/MIME encoded

[notmuch] indexing encrypted messages (was: OpenPGP support)

2010-01-08 Thread Ruben Pollan
On 15:56, Fri 08 Jan 10, martin f krafft wrote: > How about indexing GPG-encrypted messages? I think that would be security hole. You should not store the encrypted messages on a decrypted database. A solution whould be to encrypt as well the xapian DB, but I think is too complex for the use.

[notmuch] indexing encrypted messages (was: OpenPGP support)

2010-01-08 Thread Mike Hommey
On Fri, Jan 08, 2010 at 03:56:10PM +1300, martin f krafft wrote: > also sprach Jameson Graef Rollins > [2009.11.26.1901 +1300]: > > I would really like to start using notmuch with emacs beyond just > > testing, but I really need to be able to handle/read/send mail with > > PGP/MIME encoded