From: Daiki Ueno <ueno@unixuser.org>
To: Ted Zlatanov <tzz@lifelogs.com>
Cc: ding@gnus.org
Subject: Re: auth-sources asking for password 2 or 3 times
Date: Wed, 23 Feb 2011 11:14:01 +0900 [thread overview]
Message-ID: <m3zkpnebva.fsf-ueno@unixuser.org> (raw)
In-Reply-To: <87vd0bwwut.fsf@lifelogs.com> (Ted Zlatanov's message of "Tue, 22 Feb 2011 16:03:22 -0600")
Ted Zlatanov <tzz@lifelogs.com> writes:
> I put a change for this to use lexical-bind and obfuscated data stored
> inside the lambda function. I think it's as safe as we can get. IMHO
> EPA/EPG are not going to do the caching for us so you were right to move
> it to the auth-source level.
I have been always unhappy to see that you complain "EPA/EPG are not
going to do the caching" again and again, although I see a pain in the
neck is in auth-source/netrc rather than EPA/EPG.
Why auth-source/netrc tries to visit ~/.authinfo.gpg multiple times even
for only one connection? My guess is that, auth-source/netrc tries to
open that file for each parameter (e.g. user, host, port, password),
right? If so, it looks to me superfluous, since user/host/port are
generally not a secret information.
How about splitting ~/.authinfo.gpg into 2 files, one is for non-secret
information and another is for secret information? The non-secret file
would be a plain text compatible with netrc, while the secret file would
be encrypted and the decrypted content is a simple 1:1 mapping from ID
(auth-source token?) to password.
Just a thought.
Regards,
--
Daiki Ueno
next prev parent reply other threads:[~2011-02-23 2:14 UTC|newest]
Thread overview: 19+ messages / expand[flat|nested] mbox.gz Atom feed top
2011-02-20 18:19 Sivaram Neelakantan
2011-02-21 1:27 ` Lars Ingebrigtsen
2011-02-21 1:35 ` Lars Ingebrigtsen
2011-02-22 22:03 ` Ted Zlatanov
2011-02-23 2:14 ` Daiki Ueno [this message]
2011-02-23 2:36 ` Ted Zlatanov
2011-02-23 7:20 ` Daiki Ueno
2011-02-23 8:40 ` Lars Ingebrigtsen
2011-02-23 12:25 ` Daiki Ueno
2011-02-23 14:58 ` Ted Zlatanov
2011-02-25 4:35 ` Lars Ingebrigtsen
2011-02-25 7:17 ` Daiki Ueno
2011-02-25 14:40 ` Michael Albinus
2011-02-26 0:49 ` Daiki Ueno
2011-02-26 8:59 ` Michael Albinus
2011-02-26 9:24 ` Daiki Ueno
2011-02-25 14:43 ` Ted Zlatanov
2011-02-23 14:54 ` Ted Zlatanov
2011-02-23 8:36 ` Lars Ingebrigtsen
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=m3zkpnebva.fsf-ueno@unixuser.org \
--to=ueno@unixuser.org \
--cc=ding@gnus.org \
--cc=tzz@lifelogs.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).