(Using PGP/MIME): Document gpg-agent usage.

(Security): Split into sub-nodes.
author: Reiner Steib 2007-01-02 19:52:57 +0000
committer: Reiner Steib 2007-01-02 19:52:57 +0000
commit: 10ad749b1291fd25a17cf7a633eceeb428ab2eb8 (patch)
tree: 7b92d116332899370de5db8a98e0370805cf5bb3
parent: 952ccc09b9e1bbae415e49472ec8529f475eb38b (diff)
download: emacs-10ad749b1291fd25a17cf7a633eceeb428ab2eb8.tar.gz
emacs-10ad749b1291fd25a17cf7a633eceeb428ab2eb8.zip
2 files changed, 66 insertions, 5 deletions
diff --git a/man/ChangeLog b/man/ChangeLog
index 34c900ed619..d25b45e75b5 100644
--- a/man/ChangeLog
+++ b/man/ChangeLog
@@ -1,3 +1,11 @@
+2007-01-02  Daiki Ueno  <ueno@unixuser.org>
+        * message.texi (Using PGP/MIME): Document gpg-agent usage.
+2007-01-02  Reiner Steib  <Reiner.Steib@gmx.de>
+        * message.texi (Security): Split into sub-nodes.
 2007-01-01  Alan Mackenzie  <acm@muc.de>
        * cc-mode.texi ("Limitations and Known Bugs"): Document problems with
diff --git a/man/message.texi b/man/message.texi
index 023a7e8cd4a..86137c84d56 100644
--- a/man/message.texi
+++ b/man/message.texi
@@ -889,11 +889,21 @@ Libidn} installed in order to use this functionality.
 Using the @acronym{MML} language, Message is able to create digitally
 signed and digitally encrypted messages.  Message (or rather
 @acronym{MML}) currently support @acronym{PGP} (RFC 1991),
-@acronym{PGP/MIME} (RFC 2015/3156) and @acronym{S/MIME}.  Instructing
+@acronym{PGP/MIME} (RFC 2015/3156) and @acronym{S/MIME}.
-@acronym{MML} to perform security operations on a @acronym{MIME} part is
-done using the @kbd{C-c C-m s} key map for signing and the @kbd{C-c C-m
-c} key map for encryption, as follows.
+@menu
+* Signing and encryption::      Signing and encrypting commands.
+* Using S/MIME::                Using S/MIME
+* Using PGP/MIME::              Using PGP/MIME
+* PGP Compatibility::           Compatibility with older implementations
+@end menu
+@node Signing and encryption
+@subsection Signing and encrypting commands
+Instructing @acronym{MML} to perform security operations on a
+@acronym{MIME} part is done using the @kbd{C-c C-m s} key map for
+signing and the @kbd{C-c C-m c} key map for encryption, as follows.
 @table @kbd
 @item C-c C-m s s
@@ -976,6 +986,7 @@ least not compared with making sure all involved programs talk with each
 other properly.  Thus, we now describe what external libraries or
 programs are required to make things work, and some small general hints.
+@node Using S/MIME
 @subsection Using S/MIME
 @emph{Note!}  This section assume you have a basic familiarity with
@@ -1038,6 +1049,7 @@ you use unencrypted keys (e.g., if they are on a secure storage, or if
 you are on a secure single user machine) simply press @code{RET} at
 the passphrase prompt.
+@node Using PGP/MIME
 @subsection Using PGP/MIME
 @acronym{PGP/MIME} requires an external OpenPGP implementation, such
@@ -1045,7 +1057,48 @@ as @uref{http://www.gnupg.org/, GNU Privacy Guard}.  Pre-OpenPGP
 implementations such as PGP 2.x and PGP 5.x are also supported.  One
 Emacs interface to the PGP implementations, PGG (@pxref{Top, ,PGG,
 pgg, PGG Manual}), is included, but Mailcrypt and Florian Weimer's
-@code{gpg.el} are also supported.
+@code{gpg.el} are also supported.  @xref{PGP Compatibility}.
+@cindex gpg-agent
+Message internally calls GnuPG (the @command{gpg} command) to perform
+data encryption, and in certain cases (decrypting or signing for
+example), @command{gpg} requires user's passphrase.  Currently the
+recommended way to supply your passphrase to @command{gpg} is to use the
+@command{gpg-agent} program.
+To use @command{gpg-agent} in Emacs, you need to run the following
+command from the shell before starting Emacs.
+@example
+eval `gpg-agent --daemon`
+@end example
+This will invoke @command{gpg-agent} and set the environment variable
+@code{GPG_AGENT_INFO} to allow @command{gpg} to communicate with it.
+It might be good idea to put this command in your @file{.xsession} or
+@file{.bash_profile}.  @xref{Invoking GPG-AGENT, , , gnupg, Using the
+GNU Privacy Guard}.
+Once your @command{gpg-agent} is set up, it will ask you for a
+passphrase as needed for @command{gpg}.  Under the X Window System,
+you will see a new passphrase input dialog appear.  The dialog is
+provided by PIN Entry (the @command{pinentry} command), and as of
+version 0.7.2, @command{pinentry} cannot cooperate with Emacs on a
+single tty.  So, if you are using a text console, you may need to put
+a passphrase into gpg-agent's cache beforehand.  The following command
+does the trick.
+@example
+gpg --use-agent --sign < /dev/null > /dev/null
+@end example
+The Lisp variable @code{pgg-gpg-use-agent} controls whether to use
+@command{gpg-agent}.  See also @xref{Caching passphrase, , , pgg, The
+PGG Manual}.
+@node PGP Compatibility
+@subsection Compatibility with older implementations
 @vindex gpg-temp-directory
 Note, if you are using the @code{gpg.el} you must make sure that the
author	Reiner Steib	2007-01-02 19:52:57 +0000
committer	Reiner Steib	2007-01-02 19:52:57 +0000
commit	10ad749b1291fd25a17cf7a633eceeb428ab2eb8 (patch)
tree	7b92d116332899370de5db8a98e0370805cf5bb3
parent	952ccc09b9e1bbae415e49472ec8529f475eb38b (diff)
download	emacs-10ad749b1291fd25a17cf7a633eceeb428ab2eb8.tar.gz emacs-10ad749b1291fd25a17cf7a633eceeb428ab2eb8.zip

diff --git a/man/ChangeLog b/man/ChangeLog index 34c900ed619..d25b45e75b5 100644 --- a/man/ChangeLog +++ b/man/ChangeLog
@@ -1,3 +1,11 @@
		1	2007-01-02 Daiki Ueno <ueno@unixuser.org>
		2
		3	* message.texi (Using PGP/MIME): Document gpg-agent usage.
		4
		5	2007-01-02 Reiner Steib <Reiner.Steib@gmx.de>
		6
		7	* message.texi (Security): Split into sub-nodes.
		8
1	2007-01-01 Alan Mackenzie <acm@muc.de>	9	2007-01-01 Alan Mackenzie <acm@muc.de>
2		10
3	* cc-mode.texi ("Limitations and Known Bugs"): Document problems with	11	* cc-mode.texi ("Limitations and Known Bugs"): Document problems with


diff --git a/man/message.texi b/man/message.texi index 023a7e8cd4a..86137c84d56 100644 --- a/man/message.texi +++ b/man/message.texi
@@ -889,11 +889,21 @@ Libidn} installed in order to use this functionality.
889	Using the @acronym{MML} language, Message is able to create digitally	889	Using the @acronym{MML} language, Message is able to create digitally
890	signed and digitally encrypted messages. Message (or rather	890	signed and digitally encrypted messages. Message (or rather
891	@acronym{MML}) currently support @acronym{PGP} (RFC 1991),	891	@acronym{MML}) currently support @acronym{PGP} (RFC 1991),
892	@acronym{PGP/MIME} (RFC 2015/3156) and @acronym{S/MIME}. Instructing	892	@acronym{PGP/MIME} (RFC 2015/3156) and @acronym{S/MIME}.
893	@acronym{MML} to perform security operations on a @acronym{MIME} part is
894	done using the @kbd{C-c C-m s} key map for signing and the @kbd{C-c C-m
895	c} key map for encryption, as follows.
896		893
		894	@menu
		895	* Signing and encryption:: Signing and encrypting commands.
		896	* Using S/MIME:: Using S/MIME
		897	* Using PGP/MIME:: Using PGP/MIME
		898	* PGP Compatibility:: Compatibility with older implementations
		899	@end menu
		900
		901	@node Signing and encryption
		902	@subsection Signing and encrypting commands
		903
		904	Instructing @acronym{MML} to perform security operations on a
		905	@acronym{MIME} part is done using the @kbd{C-c C-m s} key map for
		906	signing and the @kbd{C-c C-m c} key map for encryption, as follows.
897	@table @kbd	907	@table @kbd
898		908
899	@item C-c C-m s s	909	@item C-c C-m s s
@@ -976,6 +986,7 @@ least not compared with making sure all involved programs talk with each
976	other properly. Thus, we now describe what external libraries or	986	other properly. Thus, we now describe what external libraries or
977	programs are required to make things work, and some small general hints.	987	programs are required to make things work, and some small general hints.
978		988
		989	@node Using S/MIME
979	@subsection Using S/MIME	990	@subsection Using S/MIME
980		991
981	@emph{Note!} This section assume you have a basic familiarity with	992	@emph{Note!} This section assume you have a basic familiarity with
@@ -1038,6 +1049,7 @@ you use unencrypted keys (e.g., if they are on a secure storage, or if
1038	you are on a secure single user machine) simply press @code{RET} at	1049	you are on a secure single user machine) simply press @code{RET} at
1039	the passphrase prompt.	1050	the passphrase prompt.
1040		1051
		1052	@node Using PGP/MIME
1041	@subsection Using PGP/MIME	1053	@subsection Using PGP/MIME
1042		1054
1043	@acronym{PGP/MIME} requires an external OpenPGP implementation, such	1055	@acronym{PGP/MIME} requires an external OpenPGP implementation, such
@@ -1045,7 +1057,48 @@ as @uref{http://www.gnupg.org/, GNU Privacy Guard}. Pre-OpenPGP
1045	implementations such as PGP 2.x and PGP 5.x are also supported. One	1057	implementations such as PGP 2.x and PGP 5.x are also supported. One
1046	Emacs interface to the PGP implementations, PGG (@pxref{Top, ,PGG,	1058	Emacs interface to the PGP implementations, PGG (@pxref{Top, ,PGG,
1047	pgg, PGG Manual}), is included, but Mailcrypt and Florian Weimer's	1059	pgg, PGG Manual}), is included, but Mailcrypt and Florian Weimer's
1048	@code{gpg.el} are also supported.	1060	@code{gpg.el} are also supported. @xref{PGP Compatibility}.
		1061
		1062	@cindex gpg-agent
		1063	Message internally calls GnuPG (the @command{gpg} command) to perform
		1064	data encryption, and in certain cases (decrypting or signing for
		1065	example), @command{gpg} requires user's passphrase. Currently the
		1066	recommended way to supply your passphrase to @command{gpg} is to use the
		1067	@command{gpg-agent} program.
		1068
		1069	To use @command{gpg-agent} in Emacs, you need to run the following
		1070	command from the shell before starting Emacs.
		1071
		1072	@example
		1073	eval `gpg-agent --daemon`
		1074	@end example
		1075
		1076	This will invoke @command{gpg-agent} and set the environment variable
		1077	@code{GPG_AGENT_INFO} to allow @command{gpg} to communicate with it.
		1078	It might be good idea to put this command in your @file{.xsession} or
		1079	@file{.bash_profile}. @xref{Invoking GPG-AGENT, , , gnupg, Using the
		1080	GNU Privacy Guard}.
		1081
		1082	Once your @command{gpg-agent} is set up, it will ask you for a
		1083	passphrase as needed for @command{gpg}. Under the X Window System,
		1084	you will see a new passphrase input dialog appear. The dialog is
		1085	provided by PIN Entry (the @command{pinentry} command), and as of
		1086	version 0.7.2, @command{pinentry} cannot cooperate with Emacs on a
		1087	single tty. So, if you are using a text console, you may need to put
		1088	a passphrase into gpg-agent's cache beforehand. The following command
		1089	does the trick.
		1090
		1091	@example
		1092	gpg --use-agent --sign < /dev/null > /dev/null
		1093	@end example
		1094
		1095	The Lisp variable @code{pgg-gpg-use-agent} controls whether to use
		1096	@command{gpg-agent}. See also @xref{Caching passphrase, , , pgg, The
		1097	PGG Manual}.
		1098
		1099
		1100	@node PGP Compatibility
		1101	@subsection Compatibility with older implementations
1049		1102
1050	@vindex gpg-temp-directory	1103	@vindex gpg-temp-directory
1051	Note, if you are using the @code{gpg.el} you must make sure that the	1104	Note, if you are using the @code{gpg.el} you must make sure that the