Another thing I forgot. You mentioned dedicated LUKS partitions as an
example solution. I wonder if you know about the `tomb` and `ctmg`
projects which more or less implement those features as commandline tool
wrappers.
Tomb is a simple shell-script wrapper around cryptsetup to easily create
and m
Hi,
Sorry for the long delay in my response, but it was a long email to
review - there's a lot of stuff in here - so I didn't quite know how to
respond. I'll just respond inline but will try to keep it brief.
On 2017-11-01 04:13:26, Daniel Kahn Gillmor wrote:
> On Mon 2017-10-30 12:16:25 -0400, A
On Mon 2017-10-30 12:16:25 -0400, Antoine Beaupré wrote:
> I think that assumption should be made clear in the documentation,
> because "security of your index" means nothing to me. Explicitly mention
> FDE as an example may be a good start.
again, i'm not convinced that "full disk" encryption is
On 2017-10-30 16:47:49, Daniel Kahn Gillmor wrote:
> On Mon 2017-10-30 08:46:12 -0400, Antoine Beaupré wrote:
>> On 2017-10-22 11:36:34, Daniel Kahn Gillmor wrote:
>>> + Note that the contents of the index are sufficient to roughly
>>> + reconstruct the cleartext of the message itself, so please
On Mon 2017-10-30 08:46:12 -0400, Antoine Beaupré wrote:
> On 2017-10-22 11:36:34, Daniel Kahn Gillmor wrote:
>> + Note that the contents of the index are sufficient to roughly
>> + reconstruct the cleartext of the message itself, so please ensure
>> + that the notmuch index itself is adequately
On 2017-10-22 11:36:34, Daniel Kahn Gillmor wrote:
> + Note that the contents of the index are sufficient to roughly
> + reconstruct the cleartext of the message itself, so please ensure
> + that the notmuch index itself is adequately protected. DO NOT USE
> + this feature without considering
Daniel Kahn Gillmor writes:
> give a short summary of cleartext indexing of encrypted e-mail
> messages.
That's fine and I've pushed it, but as written reindex will need it's
own NEWS item.
We also need to decide if the instability of subjects under reindex (see
one of the currently broken test
give a short summary of cleartext indexing of encrypted e-mail
messages.
---
NEWS | 18 ++
1 file changed, 18 insertions(+)
diff --git a/NEWS b/NEWS
index c2ebb644..895b7627 100644
--- a/NEWS
+++ b/NEWS
@@ -11,6 +11,24 @@ Out-of-tree builds
has been dropped. The same can now be