From mboxrd@z Thu Jan 1 00:00:00 1970 From: Carsten Dominik Subject: Re: Re: org-crypt and PROPERTIES location Date: Fri, 20 Mar 2009 19:33:26 +0100 Message-ID: <08666E65-8DB3-4557-88CD-6CA0BFB22134@uva.nl> References: <86fxh8xfxm.fsf@pmade.com> Mime-Version: 1.0 (Apple Message framework v930.3) Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes Content-Transfer-Encoding: 7bit Return-path: Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43) id 1LkjXB-0007lx-3w for emacs-orgmode@gnu.org; Fri, 20 Mar 2009 14:33:33 -0400 Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43) id 1LkjXA-0007lT-9i for emacs-orgmode@gnu.org; Fri, 20 Mar 2009 14:33:32 -0400 Received: from [199.232.76.173] (port=38435 helo=monty-python.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1LkjXA-0007lO-5G for emacs-orgmode@gnu.org; Fri, 20 Mar 2009 14:33:32 -0400 Received: from fg-out-1718.google.com ([72.14.220.154]:36597) by monty-python.gnu.org with esmtp (Exim 4.60) (envelope-from ) id 1LkjX9-0004Q2-5l for emacs-orgmode@gnu.org; Fri, 20 Mar 2009 14:33:31 -0400 Received: by fg-out-1718.google.com with SMTP id 19so319165fgg.7 for ; Fri, 20 Mar 2009 11:33:28 -0700 (PDT) In-Reply-To: <86fxh8xfxm.fsf@pmade.com> List-Id: "General discussions about Org-mode." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Sender: emacs-orgmode-bounces+geo-emacs-orgmode=m.gmane.org@gnu.org Errors-To: emacs-orgmode-bounces+geo-emacs-orgmode=m.gmane.org@gnu.org To: Peter Jones Cc: emacs-orgmode@gnu.org On Mar 20, 2009, at 6:27 PM, Peter Jones wrote: > Carsten Dominik writes: >> we don't have a good function for this. Also, it is not so much about >> extracting the contents, more about finding the boundaries. In some >> ways I think it would actually be better to use a tag for encryption >> instead of a property, because this would allow to encrypt everything >> except the headline. What about we change this to a tag crypt_KEY? >> Hmm, I am not sure if encryption keys would make valid tags..... > > AFAIK, the key ID is only needed for encryption. The encrypted text > will contain a pointer to the key needed for decryption. > > Therefore, I suggest that we do this: > > - Have a defcustom for the default key ID to use (I think it will be > very common that you'll use the same key to encrypt everything) > > - Allow overriding the key ID in an inheritable property (if you need > to encrypt a heading using a different key than the default) > > - Use a tag matcher to specify headings to encrypt (another defcustom > that will be used to find headings that should be encrypted > before-save) > > - Encrypt everything under the heading, including properties (even if > the property has the key ID, it won't be needed for decryption, so > the entire contents can be encrypted) > > Am I missing anything? This sounds perfect to me. You can use the mapping API to walk through the file and do the encryption. This has the advantage that you could, in principle do de- and encryption in many files in one step. Default should be the current file, though, exactly as you suggest. - Carsten > >> I'd very much like to see this improved and stabilized, so that we >> can >> include this with Org, this would be valuable to have. I am sure >> John >> would not mind if you did the final steps with it. Am I right, John? > > I had a private conversation with John, and he's completely open to me > putting the finishing touches on org-crypt and getting it included in > the org distribution. > > Are there any org-crypt users out there that want to throw in their > $0.02? > > -- > Peter Jones, http://pmade.com > pmade inc. Louisville, CO US > > > > _______________________________________________ > Emacs-orgmode mailing list > Remember: use `Reply All' to send replies to the list. > Emacs-orgmode@gnu.org > http://lists.gnu.org/mailman/listinfo/emacs-orgmode