From: Jesper Harder <harder@ifa.au.dk>
Subject: Re: Trailing whitespace and PGP/MIME
Date: Wed, 31 Dec 2003 00:29:06 +0100 [thread overview]
Message-ID: <m3n099dgvx.fsf@defun.localdomain> (raw)
In-Reply-To: <ilubrpq10uw.fsf@latte.josefsson.org> (Simon Josefsson's message of "Tue, 30 Dec 2003 21:56:07 +0100")
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Simon Josefsson <jas@extundo.com> writes:
> Jesper Harder <harder@ifa.au.dk> writes:
>
>> It'll fix pgp/mime, but it will also force QP for inline pgp if you
>> use a signature -- which for a lot of people means _always_ -- thus
>> more or less reverting the intention of your previous change.
>
> Ah. Hm. Er. So what IS the right thing? The MUST above is for
> PGP/MIME, yes, but the _reason_ the MUST is there in the document is
> about as valid for plain PGP as it is for PGP/MIME, I think, arguing
> that the obvious approach is the right.
I'm not sure all the reasons are valid for cleartext signatures.
In RFC 2440 textmode is used for cleartext signatures. PGP/MIME
allows you to use either a textmode or a binary mode detached
signature.
I think that's why they need the extra restrictions. Trailing SPC
doesn't matter if you're only using textmode, because it's ignored
when computing the signature.
> One (non-)solution is to warn the user whenever the message content
> may not work reliably with plain PGP and ask the user if she wants to
> continue, or use PGP/MIME instead.
This is similar to Mutt (or at least what Mutt used to do -- my
version is fairly old):
,----
| 6.3.115 pgp_create_traditional
|
| Type: quadoption
| Default: no
|
| This option controls whether Mutt generates old-style PGP encrypted or
| signed messages under certain circumstances.
|
| Note that PGP/MIME will be used automatically for messages which have
| a character set different from us-ascii, or which consist of more than
| a single MIME part.
|
| Also note that using the old-style PGP message format is *strongly
| depreceated*
`----
> There are many things on this list now, e.g., non-ASCII,
Yup, I agree that inline signatures are unsuitable for non-ASCII.
> trailing unencoded SPC,
I don't think that's a problem.
> data that look dash escaped.
But gpg seems to handle dash-escapes just fine:
- - -
Also, the "PGP sign part" and "PGP encrypt part" commands should
probably be removed, since Gnus itself isn't even able to handle the
result.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.0 (GNU/Linux)
iD8DBQE/8gpCzEN/MEcathkRAsyuAJ0ZYZAW43Vomkvgy1USXy7csgC76wCg0cpN
dUEzVV66ZtZolVLRv6RQ/6I=
=Sl27
-----END PGP SIGNATURE-----
next prev parent reply other threads:[~2003-12-30 23:29 UTC|newest]
Thread overview: 13+ messages / expand[flat|nested] mbox.gz Atom feed top
2003-12-30 2:15 Jesper Harder
2003-12-30 9:04 ` Ivan Boldyrev
2003-12-30 11:31 ` Simon Josefsson
2003-12-30 13:12 ` Ivan Boldyrev
2003-12-30 11:05 ` Simon Josefsson
2003-12-30 13:02 ` Jesper Harder
2003-12-30 20:56 ` Simon Josefsson
2003-12-30 23:29 ` Jesper Harder [this message]
2003-12-30 23:52 ` Simon Josefsson
2003-12-31 0:01 ` Russ Allbery
2003-12-30 23:46 ` Russ Allbery
2003-12-31 0:05 ` Simon Josefsson
2003-12-31 2:26 ` Russ Allbery
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=m3n099dgvx.fsf@defun.localdomain \
--to=harder@ifa.au.dk \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).