[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Bug#51883: replies to encrypted messages are not encrypted by default

Hi folks,

I'm trying to reach a consensus on whether or not mutt should encrypt a
reply by default if it contains quotes from an encrypted message. Mutt has
an option called pgp_replyencrypt which causes all replies to encrypted
messages to be encrypted by default, but this option is not enabled by

I think it's a bug that pgp_replyencrypt option is not enabled by default
because it is very easy for a user to inadvertantly reveal the contents of
an encrypted message in a plaintext reply without this option enabled. Marco
claims it's a matter of user preference and that I should start a thread on
debian-devel if I feel otherwise.

On Sat, Dec 04, 1999 at 03:58:10PM +0100, Marco d'Itri wrote:
> On Dec 04, Brian Ristuccia <brianr@osiris.978.org> wrote:
>  >I have marked this bug grave because it allows a user to inadvertantly
>  >reveal the entire cleartext of an encrypted message sent to them.
> This is unix, and you have enough rope to hang yourself.
>  >If mutt quotes an encrypted message in a reply, that reply should be
>  >encrypted by default. Otherwise, if the user replies to the message like any
> This is a matter of user preferences and I don't think this is a bug.
> If you think mutt should have a different default please start a thread
> on debian-devel.
>  >The comments in /etc/Muttrc imply that pgp_replyencrypt is the default,
> You read it wrong. It implies it's not the default:
> # unset pgp_replyencrypt

Brian Ristuccia

Reply to: