mirror of
https://git.notmuchmail.org/git/notmuch
synced 2024-11-23 19:38:07 +01:00
29648a137c
If you're going to store the cleartext index of an encrypted message, in most situations you might just as well store the session key. Doing this storage has efficiency and recoverability advantages. Combined with a schedule of regular OpenPGP subkey rotation and destruction, this can also offer security benefits, like "deletable e-mail", which is the store-and-forward analog to "forward secrecy". But wait, i hear you saying, i have a special need to store cleartext indexes but it's really bad for me to store session keys! Maybe (let's imagine) i get lots of e-mails with incriminating photos attached, and i want to be able to search for them by the text in the e-mail, but i don't want someone with access to the index to be actually able to see the photos themselves. Fret not, the next patch in this series will support your wacky uncommon use case. |
||
|---|---|---|
| .. | ||
| crypto.c | ||
| crypto.h | ||
| error_util.c | ||
| error_util.h | ||
| gmime-extra.c | ||
| gmime-extra.h | ||
| hex-escape.c | ||
| hex-escape.h | ||
| Makefile | ||
| Makefile.local | ||
| string-util.c | ||
| string-util.h | ||
| talloc-extra.c | ||
| talloc-extra.h | ||
| util.c | ||
| util.h | ||
| xutil.c | ||
| xutil.h | ||
| zlib-extra.c | ||
| zlib-extra.h | ||