<<< Date Index >>>     <<< Thread Index >>>

Re: Opportunistic encryption?



On Mon, Jun 14, 2004 at 08:31:14AM +0200, Jeff Fisher wrote:
> On Sun, Jun 13, 2004 at 07:13:57AM -0400, Mark Schreiber wrote:
> > Is there a decent way to opportunistically GPG-encrypt messages?  I'm
> > thinking "if the key is in the keychain, encrypt".
> > 
> > I can't seem to manage to pull this off with the existing mutt
> > functionality -- there isn't a conditional in the pattern-matching
> > language that will let me determine whether a to address is in the
> > keychain, which I think may be necessary.
> 
> One thing that would be close enough for me would be to be able to back out of
> the key selection when trying to send a message, or to be able to check
> recipient keys before sending the message.

I just submitted a patch to mutt-dev that adds opportunistic
encryption (rather than hacking it up with external scripts).  It does
pretty much the second of the two suggestions.  If opportunistic
(rather than auto) encryption is on for a user, messages to that user
will be encrypted if the keys necessary are present -- otherwise, not.
If you try it out, I'm certainly interested in feedback.  I don't have
a horrifically complex key setup here (just a few people that I know
with keys, and a few people without), and I'm curious as to what might
trip it up.

> 
> Currently, if pgp encryption is turned on, and there is not a key for one of
> the recipients, you are dropped into the key selection menu.  Unfortunately,
> the only way to get out of the key selection menu without sending the message
> is to ctrl-c out of mutt.  It would be great to be able to just cancel out of
> this menu.

Hmm.  It's a good point that the interface there is a bit annoying --
but I don't think it's that bad.  When I'm in the key selection menu,
though, using default keybindings, I seem to be able to exit the menu
alone by tapping "q", which brings up the "enter keyid" prompt, and
then hitting ^G.

> 
> Alternatively, is it possible to add this check to the pgp menu?  i.e., a
> check keys function that will let you select the recipeint keys before trying
> to send the message, so that you can leave encryption on by default, and only
> turn it off before sending certain messages? Maybe even an option to try and
> retrieve the missing keys?
> 
> I'd love to supply a patch to do this functionality, but my programming skills
> are not nearly good enough to supply a usable patch.
> 
> -- 
> jeff@xxxxxxxxxxxxxxxxxxxxxx     http://jeffenstein.dyndns.org/
> PGP encrypted mail preferred.   Key id 0x19C987F5
> ===
> Hark ye, Clinker, you are a most notorious offender.  You stand
> convicted of sickness, hunger, wretchedness, and want.
>               -- Tobias Smollet



-- 
Best of luck,
Mark Schreiber

Attachment: pgp1BxLYmwsRQ.pgp
Description: PGP signature