On 04/07/2014 05:06 PM, Mark Walters wrote:
> I think it is worse that that: I think (from what people said on irc
> some time ago) that the index contains the word and the position of that
> word so essentially the whole message can be reconstructed from the
> index.
Agree with Mark here, the
Nonetheess, if you can tell from the index that a given message contains
the words "hotel" "wine" "wife" "secret" and "rendezvous", you can infer a
*lot* about the contents of encrypted contents of the message.
On Mon, Apr 7, 2014 at 9:57 AM, Jameson Graef Rollins <
jrollins at
On Mon, Apr 07 2014, Jeremy Nickurak wrote:
> Nonetheess, if you can tell from the index that a given message contains
> the words "hotel" "wine" "wife" "secret" and "rendezvous", you can infer a
> *lot* about the contents of encrypted contents of the message.
Of course. Given that the content
Daniel Kahn Gillmor writes:
> At the moment, notmuch has a "no-modify" policy to the mail storage,
> with the exception of changing a few well-known flags on maildir names.
>
> I would be pretty sad to see that change, and i don't think that's a
> good idea for notmuch in general. let's keep
On Mon, Apr 07 2014, john.wyzer at gmx.de wrote:
>> confess i haven't been following closely), it wouldn't be much extra
>> effort for someone to implement a filter that strips encryption from the
>> message. (this might still have the problem mentioned above about also
>> stripping PGP/MIME
Daniel Kahn Gillmor d...@fifthhorseman.net writes:
At the moment, notmuch has a no-modify policy to the mail storage,
with the exception of changing a few well-known flags on maildir names.
I would be pretty sad to see that change, and i don't think that's a
good idea for notmuch in general.
On Mon, Apr 07 2014, john.wy...@gmx.de wrote:
confess i haven't been following closely), it wouldn't be much extra
effort for someone to implement a filter that strips encryption from the
message. (this might still have the problem mentioned above about also
stripping PGP/MIME signatures, but
Nonetheess, if you can tell from the index that a given message contains
the words hotel wine wife secret and rendezvous, you can infer a
*lot* about the contents of encrypted contents of the message.
On Mon, Apr 7, 2014 at 9:57 AM, Jameson Graef Rollins
jroll...@finestructure.net wrote:
On
On Mon, Apr 07 2014, Jeremy Nickurak not-m...@trk.nickurak.ca wrote:
Nonetheess, if you can tell from the index that a given message contains
the words hotel wine wife secret and rendezvous, you can infer a
*lot* about the contents of encrypted contents of the message.
Of course. Given that
On Mon, 07 Apr 2014, Jeremy Nickurak not-m...@trk.nickurak.ca wrote:
Nonetheess, if you can tell from the index that a given message contains
the words hotel wine wife secret and rendezvous, you can infer a
*lot* about the contents of encrypted contents of the message.
I think it is worse
On 04/06/2014 05:15 AM, Guyzmo wrote:
> I indeed agree with this view, and I think the best process would be
> to have the MUA decrypt and index an encrypted mail when the user wants
> it to be indexed. So the user do not get really highly secret messages
> disclosable by the index, and for
Hi!
On Sat, Apr 05, 2014 at 12:09:32PM -0700, Jameson Graef Rollins wrote:
> On Sat, Apr 05 2014, David Bremner wrote:
> > john.wyzer at gmx.de writes:
> >> Would it be possible to add the configurable option to also decrypt
> >> encrypted messages on the fly while indexing to make them
Hi!
On Sat, Apr 05, 2014 at 12:09:32PM -0700, Jameson Graef Rollins wrote:
On Sat, Apr 05 2014, David Bremner da...@tethera.net wrote:
john.wy...@gmx.de writes:
Would it be possible to add the configurable option to also decrypt
encrypted messages on the fly while indexing to make them
On 04/06/2014 05:15 AM, Guyzmo wrote:
I indeed agree with this view, and I think the best process would be
to have the MUA decrypt and index an encrypted mail when the user wants
it to be indexed. So the user do not get really highly secret messages
disclosable by the index, and for the
Jeremy Nickurak writes:
> Off the top of my head, you could have an encrypted index too, which you
> can only search while able to decrypt. Certainly another level of
> complexity.
>
But why add so much complexity?
If a user decides that either transport security is enough or
additionally the
Hello!
Would it be possible to add the configurable option to also decrypt
encrypted messages on the fly while indexing to make them searchable,
too?
That would be really great for people that consider gnupg mainly an
encryption for transport or have their complete hard drive encrypted...
john.wyzer at gmx.de writes:
> Would it be possible to add the configurable option to also decrypt
> encrypted messages on the fly while indexing to make them searchable,
> too?
>
> That would be really great for people that consider gnupg mainly an
> encryption for transport or have their
Off the top of my head, you could have an encrypted index too, which you
can only search while able to decrypt. Certainly another level of
complexity.
On Sat, Apr 5, 2014 at 11:10 AM, David Bremner wrote:
> john.wyzer at gmx.de writes:
>
> > Would it be possible to add the configurable option
On Sat, Apr 05 2014, David Bremner wrote:
> john.wyzer at gmx.de writes:
>
>> Would it be possible to add the configurable option to also decrypt
>> encrypted messages on the fly while indexing to make them searchable,
>> too?
>>
>> That would be really great for people that consider gnupg
Off the top of my head, you could have an encrypted index too, which you
can only search while able to decrypt. Certainly another level of
complexity.
On Sat, Apr 5, 2014 at 11:10 AM, David Bremner da...@tethera.net wrote:
john.wy...@gmx.de writes:
Would it be possible to add the
Jeremy Nickurak not-m...@trk.nickurak.ca writes:
Off the top of my head, you could have an encrypted index too, which you
can only search while able to decrypt. Certainly another level of
complexity.
But why add so much complexity?
If a user decides that either transport security is enough
On Sat, Apr 05 2014, David Bremner da...@tethera.net wrote:
john.wy...@gmx.de writes:
Would it be possible to add the configurable option to also decrypt
encrypted messages on the fly while indexing to make them searchable,
too?
That would be really great for people that consider gnupg
22 matches
Mail list logo