From mboxrd@z Thu Jan  1 00:00:00 1970
X-Msuck: nntp://news.gmane.io/gmane.emacs.gnus.user/17731
Path: news.gmane.org!not-for-mail
From: tomas@tuxteam.de
Newsgroups: gmane.emacs.help,gmane.emacs.gnus.user
Subject: Re: Passphrase caching for GnuPG in Emacs?
Date: Mon, 9 Nov 2015 14:50:22 +0100
Message-ID: <20151109135022.GC21743@tuxteam.de>
References: <87vb9cwkef.fsf@informationelle-selbstbestimmung-im-internet.de>
	<20151109084539.GB12671@tuxteam.de>
	<87si4fwa3n.fsf@informationelle-selbstbestimmung-im-internet.de>
NNTP-Posting-Host: plane.gmane.org
Mime-Version: 1.0
Content-Type: text/plain; charset=utf-8; x-action=pgp-signed
Content-Transfer-Encoding: 8bit
X-Trace: ger.gmane.org 1447079157 30681 80.91.229.3 (9 Nov 2015 14:25:57 GMT)
X-Complaints-To: usenet@ger.gmane.org
NNTP-Posting-Date: Mon, 9 Nov 2015 14:25:57 +0000 (UTC)
To: tomas@tuxteam.de, help-gnu-emacs@gnu.org, info-gnus-english@gnu.org
Original-X-From: help-gnu-emacs-bounces+geh-help-gnu-emacs=m.gmane.org@gnu.org Mon Nov 09 15:25:50 2015
Return-path: <help-gnu-emacs-bounces+geh-help-gnu-emacs=m.gmane.org@gnu.org>
Envelope-to: geh-help-gnu-emacs@m.gmane.org
Original-Received: from lists.gnu.org ([208.118.235.17])
	by plane.gmane.org with esmtp (Exim 4.69)
	(envelope-from <help-gnu-emacs-bounces+geh-help-gnu-emacs=m.gmane.org@gnu.org>)
	id 1ZvnOF-0008Ra-KP
	for geh-help-gnu-emacs@m.gmane.org; Mon, 09 Nov 2015 15:25:47 +0100
Original-Received: from localhost ([::1]:52972 helo=lists.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <help-gnu-emacs-bounces+geh-help-gnu-emacs=m.gmane.org@gnu.org>)
	id 1ZvnOE-0002VU-VV
	for geh-help-gnu-emacs@m.gmane.org; Mon, 09 Nov 2015 09:25:46 -0500
Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:37079)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <tomas@tuxteam.de>) id 1ZvnNl-0002Tg-9B
	for help-gnu-emacs@gnu.org; Mon, 09 Nov 2015 09:25:18 -0500
Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <tomas@tuxteam.de>) id 1ZvnNg-0007eS-24
	for help-gnu-emacs@gnu.org; Mon, 09 Nov 2015 09:25:17 -0500
Original-Received: from mail.tuxteam.de ([5.199.139.25]:50488 helo=tomasium.tuxteam.de)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <tomas@tuxteam.de>)
	id 1ZvnNd-0007dG-R8; Mon, 09 Nov 2015 09:25:11 -0500
Original-Received: from tomas by tomasium.tuxteam.de with local (Exim 4.80)
	(envelope-from <tomas@tuxteam.de>)
	id 1Zvmpy-0005jm-6i; Mon, 09 Nov 2015 14:50:22 +0100
In-Reply-To: <87si4fwa3n.fsf@informationelle-selbstbestimmung-im-internet.de>
User-Agent: Mutt/1.5.21 (2010-09-15)
X-detected-operating-system: by eggs.gnu.org: GNU/Linux 3.x
X-Received-From: 5.199.139.25
X-BeenThere: help-gnu-emacs@gnu.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: Users list for the GNU Emacs text editor <help-gnu-emacs.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/help-gnu-emacs>,
	<mailto:help-gnu-emacs-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/help-gnu-emacs>
List-Post: <mailto:help-gnu-emacs@gnu.org>
List-Help: <mailto:help-gnu-emacs-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/help-gnu-emacs>,
	<mailto:help-gnu-emacs-request@gnu.org?subject=subscribe>
Errors-To: help-gnu-emacs-bounces+geh-help-gnu-emacs=m.gmane.org@gnu.org
Original-Sender: help-gnu-emacs-bounces+geh-help-gnu-emacs=m.gmane.org@gnu.org
Xref: news.gmane.org gmane.emacs.help:108006 gmane.emacs.gnus.user:17731
Archived-At: <http://permalink.gmane.org/gmane.emacs.help/108006>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Mon, Nov 09, 2015 at 02:55:40PM +0100, Jens Lechtenboerger wrote:
> On 2015-11-09, at 09:45, tomas@tuxteam.de wrote:
> 
> > On Sun, Nov 08, 2015 at 05:00:56PM +0100, Jens Lechtenboerger wrote:
> >> Hi there,
> >>
> >> I plan to refactor the code used for GnuPG in the Message mode of
> >> Emacs [...]

> > The last time I gave gpg 2 a try, a crude GTK dialog appeared from
> > nowhere (disrupting my command line workflow). I just ran away,
> > screaming.
> >
> > It seems there's a command-line pinentry these days. From Emacs,
> > my dream would be that it's Emacs which handles user interaction.
> 
> What you describe is the default for GUIs, I guess.

yes, I suppose.

> If I use the option
> pinentry-program /usr/local/bin/pinentry-curses
> in gpg-agent.conf and start Emacs within a terminal (option -nw),
> then the passphrase needs to be entered within the terminal window,
> whose contents get replaced by pinentry-curses while entering the
> passphrase.  Would that be good enough for you?

That would force me to use Emacs -nw. Hmmm.

> Moreover, as mentioned above there is Emacs support in pinentry,
> which can be enabled by configure options at compile time.

Yep, that'll be it. I'm aware of the risks[1], I'll take them. Thanks
for pointing me to a solution.

> >From the pinentry info pages:
>    “Having Emacs get the passphrase is convenient, however, it is a
> significant security risk [...]

> Out of curiosity: Are you customizing any of the 8 variables related
> to passphrase caching that I mentioned in my earlier message?

No. Your changes won't affect me. My question was on a tangent anyway,
but thanks for the clarifications.

[1] If someone takes over my Emacs I'm SOL anyway. All my data go down
in flames :-)

Regards
- -- tomás
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAlZApJ4ACgkQBcgs9XrR2kZ73gCfbwJpAAdMrzdRCartF9kL3FNK
ANoAmwVTM18AhtjlUWFWmTzSIpJIoibO
=NOky
-----END PGP SIGNATURE-----