emacs-orgmode@gnu.org archives
 help / color / mirror / code / Atom feed
From: David Masterson <dsmasterson@gmail.com>
To: Tim Cross <theophilusx@gmail.com>
Cc: emacs-orgmode@gnu.org
Subject: Re: org-crypt ?
Date: Sat, 11 Jun 2022 14:29:15 -0700	[thread overview]
Message-ID: <SJ0PR03MB545560D9F5556E878062BD89A2A99@SJ0PR03MB5455.namprd03.prod.outlook.com> (raw)
In-Reply-To: <871qvvesqh.fsf@gmail.com> (Tim Cross's message of "Sat, 11 Jun 2022 13:35:26 +1000")

Tim Cross <theophilusx@gmail.com> writes:

> David Masterson <dsmasterson@gmail.com> writes:
>> I think I've gotten org-crypt working, but I think some things are not
>> making sense (it might be just me):
>> 1. I've set org-crypt-key to nil (symmetric encryption).
>> 2. Can I use a different encryption key for each encrypted paragraph?
>> 3. Does org-encrypt only ask for the key the first time?
>> 4. Does org-decrypt only ask for the key the first time?
>> 5. How do they know where to get the password when they don't ask?
>> 6. Shouldn't org-crypt docs in org manual have examples?
>> Does this make sense -- I think I'm messing something up.
> Warning: I have not used org-crypt for many years. These days, I just
> use a .org.gpg extensions and symmetrically encrypt the whole file.
> However, I think I can probably answer some of your questions -

Hmm, two questions that this brings up:

1. Do you access your files on (say) iPhone?
2. Do you store your files in Git (say Github)?

>> 2. Can I use a different encryption key for each encrypted paragraph?
> According to the manual -
> No, not with symmetric encryption. I think this can only work with
> asymmetric encryption.

This needs to be spelled out better.

> If your using symmetric encryption, you typically just have one key for
> all the data within the file. From the gnuPG perspective, this is just
> encrypted text. It does not 'know' about different paragraphs. To have
> different encryption with each paragraph, you would need to specify
> different keys and there is no mechanism to do that with symmetric
> encryption only asymmetric.

org-(en/de)crypt ??

Hmm, you're suggesting you don't use org-(en/de)crypt.  The manual
doesn't spell out very well how to do that.  Where do you put your key
for symmetric encryption?

> What is your use case where you need multiple symmetric encryption keys
> in one file?

One broken key doesn't give up the whole file.

>> 6. Shouldn't org-crypt docs in org manual have examples?
> Probably, though I don't know what else you would put in there which
> isn't already there. Feel free to supply a PR or patch once you have
> worked it out. However, as noted in the commentary section, org-crypt.el
> is really a very light-weight wrapper around functions in epg.el, so
> likely the first place to start when looking for documentation and
> examples is the epa/epg/easyPG manual

Not good at writing these days, buy I'll consider.

David Masterson

  reply	other threads:[~2022-06-11 21:30 UTC|newest]

Thread overview: 14+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2022-06-10  4:08 org-crypt ? David Masterson
2022-06-11  3:35 ` Tim Cross
2022-06-11 21:29   ` David Masterson [this message]
2022-06-12  0:28     ` Tim Cross
2022-06-12  1:37       ` Ihor Radchenko
2022-06-12  3:07       ` David Masterson
2022-06-12  4:04         ` Tim Cross
2022-06-12  6:19           ` David Masterson
2022-06-12  4:15         ` Ihor Radchenko
2022-06-12  5:55           ` David Masterson
2022-06-14  4:13             ` Ihor Radchenko
2022-06-11  4:17 ` Ihor Radchenko
2022-06-11 21:17   ` David Masterson
2022-06-11 21:46     ` Ignacio Casso

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:

  List information: https://www.orgmode.org/

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=SJ0PR03MB545560D9F5556E878062BD89A2A99@SJ0PR03MB5455.namprd03.prod.outlook.com \
    --to=dsmasterson@gmail.com \
    --cc=emacs-orgmode@gnu.org \
    --cc=theophilusx@gmail.com \


* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body.
Code repositories for project(s) associated with this public inbox


This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).