Header protection / memoryhole [was: Re: Header encryption / memoryhole]

Varac varac at leap.se
Mon Apr 9 03:23:44 PDT 2018


Hi Daniel,

Thanks for clarifying!

Greetings, Varac


Quoting Daniel Kahn Gillmor (2018-04-08 23:18:34)
> On Mon 2018-04-02 18:58:28 +0200, Varac wrote:
> 
> > I'd like to know the state of header encryption support for
> > notmuch (aka memoryhole) [1].
> 
> "memoryhole" refers to "protected headers", not just encrypted headers.
> That is, the headers can be protected both by cryptographic signature
> *and* by encryption.  This is a subtlety, but probably worth getting
> right as we work on documentation and implementations.
> 
> This is on my list of things to work on for notmuch, but i'd be happy if
> someone else beat me to it.  clearly i've taken too long to get this
> done.
> 
> fwiw, memory-hole messages do display successfully in all versions of
> notmuch i'm aware of, but they do so by rendering the "force-display"
> part.  so notmuch currently uses the fallback arrangements as explicitly
> intended by the original memoryhole draft.
> 
> as i see it, the steps are (in order):
> 
>  * handle encrypted subject correctly during message display time if the
>    message is being decrypted.
>  
>  * handle encrypted subject specifically during message decryption at
>    indexing time, storing it the correct subject field, instead of
>    storing the "outside" subject.
> 
>  * suppress display of any "force-display" part during message display
>    time.
> 
>  * handle any other cryptographically-protected headers during display
>    and indexing.
> 
>  * generate protected headers when encrypting mail.
> 
> 
> i welcome help with any of these steps :)
> 
>   --dkg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: signature
URL: <http://notmuchmail.org/pipermail/notmuch/attachments/20180409/1914c68c/attachment.sig>


More information about the notmuch mailing list