Tickets :: [#5773] cache PGP public key

6.0.0-beta1

7/12/25

Summary	cache PGP public key
Queue	IMP
Queue Version	HEAD
Type	Enhancement
State	Resolved
Priority	1. Low
Owners	chuck (at) horde (dot) org
Requester	adrieder (at) sbox (dot) tugraz (dot) at
Created	10/05/2007 (6490 days ago)
Due	10/05/2007 (6490 days ago)
Updated	10/08/2007 (6487 days ago)
Assigned
Resolved	10/08/2007 (6487 days ago)
Milestone
Patch	No

10/08/2007 08:33:21 PM	Chuck Hagenbuch	Comment #10 Assigned to Chuck Hagenbuch Taken from Horde Developers State ⇒ Resolved	Reply to this comment
Committed, thanks.

10/08/2007 07:44:45 PM	Chuck Hagenbuch	Deleted Original Message

10/08/2007 07:44:28 PM	Chuck Hagenbuch	State ⇒ Accepted

10/08/2007 07:32:19 PM	Jan Schneider	Comment #9	Reply to this comment
No

10/08/2007 07:10:24 PM	Chuck Hagenbuch	Comment #8 Assigned to Horde Developers State ⇒ Feedback	Reply to this comment
Jan, any issues with this now?

10/08/2007 07:57:37 AM	adrieder (at) sbox (dot) tugraz (dot) at	Comment #7 New Attachment: PGP.php.patch	Reply to this comment
caching for an hour seems reasonable to me Ok, here is an updated patch.

10/05/2007 07:41:51 PM	Chuck Hagenbuch	Comment #6 State ⇒ Accepted	Reply to this comment
caching for an hour seems reasonable to me

10/05/2007 06:41:22 PM	adrieder (at) sbox (dot) tugraz (dot) at	Comment #5	Reply to this comment
This would render key revocations useless and has to be considered a security risk. hmm... and how are revocations handled if the the public key is stored in the readers address book? As far as I see in that case the risk is the same, and this code part should also be removed. However, I think an option would be to set the cache expiration time for the public key item to a shorter time, eg. 1 hour. Please rethink your decision....

10/05/2007 03:08:58 PM	Jan Schneider	Comment #4 State ⇒ Rejected	Reply to this comment
This would render key revocations useless and has to be considered a security risk.

10/05/2007 02:06:37 PM	Chuck Hagenbuch	Deleted Original Message

10/05/2007 11:03:44 AM	adrieder (at) sbox (dot) tugraz (dot) at	Comment #3 New Attachment: PGP.php[1].patch	Reply to this comment
And here is the a patch which should do it! oops... there was a copy paste error in it, here the corrected version

10/05/2007 11:01:03 AM	adrieder (at) sbox (dot) tugraz (dot) at	Comment #2 New Attachment: PGP.php.patch	Reply to this comment
The retrieval of a PGP public key from a keyserver or a LDAP server can sometimes take very long, so it would be great to cache the result for future use. So other PGP signed messages from the same sender can be opened faster. And here is the a patch which should do it!

10/05/2007 09:46:09 AM	adrieder (at) sbox (dot) tugraz (dot) at	Comment #1 Priority ⇒ 1. Low State ⇒ New Queue ⇒ IMP Summary ⇒ cache PGP public key Type ⇒ Enhancement Due ⇒ 10/05/2007	Reply to this comment
The retrieval of a PGP public key from a keyserver or a LDAP server can sometimes take very long, so it would be great to cache the result for future use. So other PGP signed messages from the same sender can be opened faster.