Re: Opportunistic STARTTLS in smtpmail.el

[Lars Magne Ingebrigtsen]

Ted Zlatanov <address@hidden> writes:

> s/auth-info/auth-source/g right?

Yes.  :-)

> IOW rather than your "secret" token, let's keep the existing tokens but
> the netrc backend of auth-source will know that when it sees "xyz
> gpg:<hex data>" it needs to decode that hex data.

I don't know how gpg works here.  Does gpg-encrypting the same string
give you identical results, or does gpg auto-salt things?  The idea with
putting several tokens into the secret part was to 1) make it more
difficult to brute-force, and 2) make it possible to salt the string, so
that if you have two services with the same user-name/password, the
secret tokens would not be identical.

> We should provide a general mode that can show the file with all the
> gpg:<hex data> locations replaced, showing the decrypted data with text
> overlays and different colors.  The mode could also edit the encrypted
> data inline.  This would be very useful for all of Emacs, not just
> auth-source.  Sort of a scratch pad with arbitrary encryption intervals.
> With such a mode, a lot less direct auth-source support will be needed
> for these encrypted tokens.  The netrc backend would simply use the
> general mode.

Sounds way too complicated, I think.  The usage at hand is the netrc
file format, and I don't think it would have much utility beyond that.

Besides, adding this to netrc would be really trivial.  Making it
general would be difficult.

-- 
(domestic pets only, the antidote for overdose, milk.)
  bloggy blog http://lars.ingebrigtsen.no/