[prev in list] [next in list] [prev in thread] [next in thread] 

List:       kde-bugs-dist
Subject:    [Bug 51798] Usability: passphrase dialog pops up too early
From:       "Bernhard E.Reiter" <bernhard () intevation ! de>
Date:       2003-10-02 10:25:34
[Download RAW message or body]

------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
     
http://bugs.kde.org/show_bug.cgi?id=51798     




------- Additional Comments From bernhard@intevation.de  2003-10-02 12:25 -------
I don't completely understand your line of proposed difficulties 
with the current status. 
 
 > But in this case you are trading your privacy for compfort.  
 > I could use a similar setting if I trusted the environment, but the fact that  
 > I receive an encrypted mail means I do not trust the environment too much.  
  
If you don't trust the environment, you should not read the encrypted emails 
there. If people can control your kmail while you are sitting in front of your 
computer, they will be able to read the emails they want to read anyway. 
They will just do a different crypto operation when you try to decrypt an email. 
The only case where a long time to life is suboptimal is, when you leave 
the machine, but in that case you can make your screensaver kill the gpg-agent. 
 
I'm not deeply in the HTML debate, but I was under the impression 
that HTML formatting itself can be malicious, which is not possible 
with the content of an encrypted email. So it would make sense to treat 
this differently.
[prev in list] [next in list] [prev in thread] [next in thread]