[prev] [thread] [next] [lurker] [Date index for 2002/09/24]
On Tue, Sep 24, 2002 at 12:16:37PM +0100, Richard Clamp wrote: >[My "you're planning to overengineer light" has almost burnt out. Slow >down you two] >On Tuesday, Sep 24, 2002, at 11:48 Europe/London, Roger Burton West >wrote: >>On Tue, Sep 24, 2002 at 11:30:03AM +0100, Simon Wistow wrote: >>>I presume you'd >>>want it authorised by PGP signature or something. >>In an ideal world, though it shouldn't be compulsory. >Stop with the crack. How about this: there may at some point be a plugin which will take a PGP-ed message and: (a) decrypt it with a list-specific key; and/or (b) verify its signature; and/or (c) encrypt/sign it; and (d) insert information to describe what it's done (probably header lines, which it should strip out of anything coming into it). That's entirely orthogonal to "how we do list admin by email". I can envision a desire for a list on which all mail is PGP-signed and encrypted end-to-end, for example... but later, later, later, it's not part of the core design and it doesn't need to be done in time for release. A basic "login <email-address> <password>" is entirely good enough if it's extensible (e.g. by one-time passwords, which I'll probably write). RogerThere's stuff above here
Generated at 13:56 on 01 Jul 2004 by mariachi 0.52