From mboxrd@z Thu Jan  1 00:00:00 1970
X-Msuck: nntp://news.gmane.io/gmane.emacs.gnus.general/36078
Path: main.gmane.org!not-for-mail
From: Florian Weimer <fw@deneb.enyo.de>
Newsgroups: gmane.emacs.gnus.general
Subject: Re: security: Encrypted mail in the archive
Date: 01 May 2001 14:16:32 +0200
Message-ID: <87pudti7rz.fsf@deneb.enyo.de>
References: <E14tsV5-0004MU-00@dahaIM.dyndns.org>
	<878zkjbom3.fsf@deneb.enyo.de> <kp7l011u8b.fsf@utip202.cs.utwente.nl>
NNTP-Posting-Host: coloc-standby.netfonds.no
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Trace: main.gmane.org 1035171724 6657 80.91.224.250 (21 Oct 2002 03:42:04 GMT)
X-Complaints-To: usenet@main.gmane.org
NNTP-Posting-Date: Mon, 21 Oct 2002 03:42:04 +0000 (UTC)
Return-Path: <owner-ding@gnus.org>
Original-Received: (qmail 5342 invoked by alias); 1 May 2001 12:03:40 -0000
Original-Received: (qmail 5337 invoked from network); 1 May 2001 12:03:40 -0000
Original-Received: from mail.s.netic.de (HELO mail.netic.de) (212.9.160.11)
  by gnus.org with SMTP; 1 May 2001 12:03:40 -0000
Original-Received: by mail.netic.de (Smail3.2.0.111/mail.s.netic.de)
	via LF.net GmbH Internet Services
	via remoteip 212.9.163.84
	via remotehost mail.enyo.de with esmtp
	for mail.gnus.org
	id m14uYsV-001WyaC; Tue, 1 May 2001 14:03:39 +0200 (CEST)
Original-Received: from [192.168.1.2] (helo=deneb.enyo.de ident=exim)
	by mail.enyo.de with esmtp (Exim 3.12 #1)
	id 14uYrk-0006DD-00
	for ding@gnus.org; Tue, 01 May 2001 14:02:52 +0200
Original-Received: from fw by deneb.enyo.de with local (Exim 3.12 #1)
	id 14uZ4y-0000jB-00
	for ding@gnus.org; Tue, 01 May 2001 14:16:32 +0200
Original-To: ding@gnus.org
In-Reply-To: <kp7l011u8b.fsf@utip202.cs.utwente.nl> (Jaap-Henk Hoepman's message of "01 May 2001 09:37:32 +0200")
User-Agent: Gnus/5.090003 (Oort Gnus v0.03) Emacs/20.7
Original-Lines: 16
Xref: main.gmane.org gmane.emacs.gnus.general:36078
X-Report-Spam: http://spam.gmane.org/gmane.emacs.gnus.general:36078

Jaap-Henk Hoepman <hoepman@cs.utwente.nl> writes:

> > If this is not acceptable in your environment, you need a
> > cryptographic filesystem anyway, so I don't consider this a problem.
> 
> I consider this to be a _big_ problem, because it is definitely not what I
> would expect. If I send encrypted mail, the local copy should be encrypted
> too.

Even if the archived copy is encrypted, the article may have been
written to disk in plaintext, for example as a draft or as an
auto-save copy.  Or the user might have included some attachment which
has to be on disk in plaintext the time the message sent.

IMHO, encrypting the archived copy just gives a false sense of
security.