From mboxrd@z Thu Jan 1 00:00:00 1970 X-Msuck: nntp://news.gmane.io/gmane.emacs.gnus.general/53952 Path: main.gmane.org!not-for-mail From: Hrvoje Niksic Newsgroups: gmane.emacs.gnus.general Subject: Re: Entering passphrase twice when sending PGP signed message Date: Sun, 14 Sep 2003 03:22:27 +0200 Sender: ding-owner@lists.math.uh.edu Message-ID: References: NNTP-Posting-Host: deer.gmane.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Trace: sea.gmane.org 1063502568 340 80.91.224.253 (14 Sep 2003 01:22:48 GMT) X-Complaints-To: usenet@sea.gmane.org NNTP-Posting-Date: Sun, 14 Sep 2003 01:22:48 +0000 (UTC) Cc: hniksic@xemacs.org Original-X-From: ding-owner+M2492@lists.math.uh.edu Sun Sep 14 03:22:46 2003 Return-path: Original-Received: from malifon.math.uh.edu ([129.7.128.13]) by deer.gmane.org with esmtp (Exim 3.35 #1 (Debian)) id 19yLbB-0002VI-00 for ; Sun, 14 Sep 2003 03:22:45 +0200 Original-Received: from localhost ([127.0.0.1] helo=lists.math.uh.edu) by malifon.math.uh.edu with smtp (Exim 3.20 #1) id 19yLb3-0001Rq-00; Sat, 13 Sep 2003 20:22:37 -0500 Original-Received: from sclp3.sclp.com ([64.157.176.121]) by malifon.math.uh.edu with smtp (Exim 3.20 #1) id 19yLaz-0001Rl-00 for ding@lists.math.uh.edu; Sat, 13 Sep 2003 20:22:33 -0500 Original-Received: (qmail 79656 invoked by alias); 14 Sep 2003 01:22:33 -0000 Original-Received: (qmail 79651 invoked from network); 14 Sep 2003 01:22:32 -0000 Original-Received: from mxout.iskon.hr (qmailr@213.191.128.10) by sclp3.sclp.com with SMTP; 14 Sep 2003 01:22:32 -0000 Original-Received: (qmail 17826 invoked from network); 14 Sep 2003 03:22:31 +0200 Original-Received: from mx.iskon.hr (qmailr@213.191.128.14) by mxout.iskon.hr with SMTP; 14 Sep 2003 03:22:31 +0200 Original-Received: (qmail 23611 invoked from network); 14 Sep 2003 03:22:30 +0200 Original-Received: from hniksic.iskon.hr (213.191.139.17) by mx.iskon.hr with SMTP; 14 Sep 2003 03:22:30 +0200 Original-To: ding@gnus.org In-Reply-To: (Simon Josefsson's message of "Sun, 14 Sep 2003 02:41:52 +0200") User-Agent: Gnus/5.1002 (Gnus v5.10.2) XEmacs/21.4 (Rational FORTRAN, linux) Precedence: bulk Xref: main.gmane.org gmane.emacs.gnus.general:53952 X-Report-Spam: http://spam.gmane.org/gmane.emacs.gnus.general:53952 Simon Josefsson writes: > Hrvoje Niksic writes: > >> How about remembering the passphrase and reusing it the second time? >> The passphrase would be forgotten the moment the mail sending process >> is finished. At first that sounds like a violation of passphrase >> privacy, but think about it: as long as the string is not copied >> around, it's no more dangerous to use it twice and delete it than to >> prompt for it twice, deleting it each time around. > > This is supposed to work by default, Now I'm somewhat confused because your previous mail sounded exactly the opposite -- like it's not supposed to work by default. But then again, I haven't studied the code, it might be a much more complex issue than I'm aware of. > but if you have multiple PGP identities, there is a known problem. But I don't have multiple PGP identities, at least not for now. > For me, the passphrase is cached so everything is decrypted > automatically, but for signing I have to enter it (twice). I haven't tried encryption/decryption yet. I wanted to start with something simple, such as signing, and stumbled on the type-the-passphrase-twice thing which makes (to me) the whole experience a rather unpleasant one.