Daniel Kahn Gillmor writes on februar 25, 2017 21:58:
On Thu 2017-02-23 08:09:52 -0500, Gaute Hope wrote:Upon closer looking it does not seem like 'gpgme' supports this option at the moment. I came across a patch from @dkg talking about the '-throw-keyids' option [0]. I haven't figured out how to set this option for a gpg context though, perhaps it can only be set in the config file.fwiw, i don't think you want --throw-keyids, esp. in the e-mail context, which is where GMime works best. --throw-keyids aggressively removes all key IDs, but most e-mails then wrap the encrypted blob inside a MIME body that includes even more metadata than the key ID :)
Would not the same metadata be present with --hidden-recipient as well? Just that some of the key IDs that are hidden with --throw-keyids will still be possible to deduce from the e.g. the To, Cc and From fields. Is Bcc leaked as well?
I agree that --hidden-recipient is the way to go here, and i'll go over to the GnuPG mailing lists and agitate for its inclusion in gpgme over there.
Thanks, `--hidden-recipient` is definitely the appropriate option here. Regards, Gaute
Attachment:
pgpbBKEVhWohB.pgp
Description: PGP signature