[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Monotone-devel] Keystore usability -- passphraseless keys, etc.
|
From: |
Nathaniel Smith |
|
Subject: |
Re: [Monotone-devel] Keystore usability -- passphraseless keys, etc. |
|
Date: |
Tue, 20 Feb 2007 15:16:09 -0800 |
|
User-agent: |
Mutt/1.5.13 (2006-08-11) |
On Tue, Feb 20, 2007 at 11:59:11AM +1100, Daniel Carosone wrote:
> At least one concern: what happens when a user changes from/to a
> NO-PASSPHRASE key? We risk leaving a NOPASSPHRASE copy lying around
> after they expressed an intention to protect their key, or we risk
> confusion by reading two different files with the same private key.
Ah, I'm already assuming we have to maintain some sort of mapping from
filenames to the keys contained in them, since there's no way we can
stop people from just rearranging their keys/ directory already... so
the answer is "when you rewrite a key (e.g., in chkeypass), you remove
the file it used to be in -- whatever its name -- and write a new file
under the name you want now". (Interesting puzzle: can/should this be
done atomically, so an inopportune crash cannot lose the private key
entirely?)
> Perhaps it's more useful to keep the filenames the same as now, but
> display this extra information in "ls keys". Or do both?
Yeah, this seems potentially good, but orthogonal, to me. ls keys is
not the interface you are using at the time you risk exposing your
key.
-- Nathaniel
--
The Universe may / Be as large as they say
But it wouldn't be missed / If it didn't exist.
-- Piet Hein
- Re: [Monotone-devel] Keystore usability -- passphraseless keys, etc.,
Nathaniel Smith <=