Re: Security issue / bad UI design in mutt CVS (encryption options)

To: mutt-users@xxxxxxxx
Subject: Re: Security issue / bad UI design in mutt CVS (encryption options)
From: Magnus Therning <magnus@xxxxxxxxxxxx>
Date: Sat, 7 Aug 2004 14:33:11 +0200
In-reply-to: <20040806141746.GK1955@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
List-unsubscribe: <mailto:mutt-users-request@mutt.org?body=unsubscribe>
Mail-followup-to: mutt-users@xxxxxxxx
References: <20040806062557.GE4850@xxxxxxxxxx> <20040806080449.GB11912@xxxxxxxxx> <20040806141746.GK1955@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Sender: owner-mutt-users@xxxxxxxx
User-agent: Mutt/1.5.6+20040803i

On Fri, Aug 06, 2004 at 10:17:46AM -0400, Stephen Allen wrote:
>On Fri, Aug 06, 2004 at 10:04:49AM +0200 or thereabouts, Magnus Therning wrote:
>> The mutt version in Debian Sarge (Unstable) is 1.5.6.
>> 
>> I used to be somewhat irritated with the previous behaviour of this menu
>> (in 1.4), since switching from sign-and-encrypt to sign-only required
>> two actions. I was quite pleased with the behaviour in 1.5 since it now
>> toggles, at least I was pleased until I read the mail below.
>> 
>> I have to say I agree 100% percent with Derek. The menu should be made
>> clearer. Thinking back I found out about the new behaviour by mistake, I
>> was *lucky* to notice that the buttons now toggled rather than just
>> turning it on. I would be in favour of having the following menu
>> (almost straight copy from below, (c)lear rather then (f)orget):
>
>Actually, I found it rather intutitive and I recently learned how to
>use GPG with mutt. I don't know how hard it is really to figure out
>that it's toggable, if you have the e-mail in front of you displaying
>the GPG encrytion header.

So then you were lucky enough to not have to experience the *changing*
of the behaviour.

>So, I would ask the developers NOT to change this behaviour. It's
>prefectly acceptable as is IMHO. This is hardly a security issue in my
>view!

I am not really agains the *behaviour* of the menu but the menu itself.
If pressing a key will toggle a setting then the menu should say that it
*toggles*. Wouldn't you prefer a tick-box over a regular button in a GUI
application in this case?

If you don't consider the users' privacy to be a security issue, then it
isn't a security issue.

>BTW, please trim your attributions in the future, and please don't top post.

Sorry, it's a bad habit I've picked up at work due to most of my
colleagues using inferior mail clients.

/M

-- 
Magnus Therning                    (OpenPGP: 0xAB4DFBA4)
magnus@xxxxxxxxxxxx
http://magnus.therning.org/

Wade's Maxim:
No one ever made money by typing.
     -- Wade Henessy

Attachment: signature.asc
Description: Digital signature

References:
- Security issue / bad UI design in mutt CVS (encryption options)
  - From: Derek Martin
- Re: Security issue / bad UI design in mutt CVS (encryption options)
  - From: Magnus Therning
- Re: Security issue / bad UI design in mutt CVS (encryption options)
  - From: Stephen Allen

Prev by Date: Re: check-traditional-pgp
Next by Date: folder-hook && push question
Previous by thread: Re: Security issue / bad UI design in mutt CVS (encryption options)
Next by thread: vcf
Index(es):
- Date
- Thread