Path: csiph.com!optima2.xanadu-bbs.net!xanadu-bbs.net!feeder.erje.net!1.eu.feeder.erje.net!newsfeed.xs4all.nl!newsfeed8.news.xs4all.nl!newsgate.cistron.nl!newsgate.news.xs4all.nl!post.news.xs4all.nl!not-for-mail
Return-Path: <python-python-list@m.gmane.org>
X-Original-To: python-list@python.org
Delivered-To: python-list@mail.python.org
X-Spam-Status: OK 0.017
X-Spam-Evidence: '*H*': 0.97; '*S*': 0.00; 'subject:Python': 0.05; 'failure.': 0.09; 'received:80.91': 0.09; 'received:80.91.229': 0.09; 'received:gmane.org': 0.09; 'received:list': 0.09; 'matters,': 0.16; 'owner.': 0.16; 'received:80.91.229.3': 0.16; 'received:plane.gmane.org': 0.16; 'sure.': 0.16; 'wrote:': 0.16; 'trying': 0.22; 'software.': 0.22; 'disable': 0.22; 'am,': 0.23; 'header:In-Reply-To:1': 0.24; 'header:User-Agent:1': 0.26; 'header:X-Complaints-To:1': 0.26; "doesn't": 0.28; "i'm": 0.29; 'too.': 0.30; 'point': 0.33; 'received:comcast.net': 0.33; 'file': 0.34; 'to:addr:python-list': 0.35; 'but': 0.36; 'client': 0.37; 'subject:: ': 0.37; 'received:org': 0.38; 'to:addr:python.org': 0.39; 'data': 0.40; 'sure': 0.40; 'behavior': 0.61; 'default': 0.61; 'become': 0.62; 'charset:windows-1252': 0.65; 'plan,': 0.66; 'subject:Data': 0.66; 'privacy': 0.71; 'smith': 0.76; 'edwards': 0.91
X-Injected-Via-Gmane: http://gmane.org/
To: python-list@python.org
From: Randall Smith <randall@tnr.cc>
Subject: Re: Pure Python Data Mangling or Encrypting
Date: Sat, 27 Jun 2015 13:22:33 -0500
References: <mmcagn$aa5$1@ger.gmane.org> <q67loadve6lsrh672u47omr04tvqttt6jd@4ax.com> <mailman.29.1435170987.3674.python-list@python.org> <558b7e85$0$1648$c3e8da3$5496439d@news.astraweb.com> <mailman.42.1435206516.3674.python-list@python.org> <558bc912$0$2899$c3e8da3$76491128@news.astraweb.com> <slrnmonkip.1nu.jon+usenet@frosty.unequivocal.co.uk> <558c1a7e$0$1668$c3e8da3$5496439d@news.astraweb.com> <slrnmoo7ev.1nu.jon+usenet@frosty.unequivocal.co.uk> <CAPTjJmqOzLTv9cFFKjV-BLtaFZhEZ4B870ALqNMmanCEN-VqXA@mail.gmail.com> <mailman.89.1435280528.3674.python-list@python.org> <558d86b0$0$1659$c3e8da3$5496439d@news.astraweb.com> <mailman.111.1435349412.3674.python-list@python.org> <mmm5g9$7au$2@reader1.panix.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=windows-1252; format=flowed
Content-Transfer-Encoding: 7bit
X-Gmane-NNTP-Posting-Host: c-98-251-140-107.hsd1.ms.comcast.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.7.0
In-Reply-To: <mmm5g9$7au$2@reader1.panix.com>
X-BeenThere: python-list@python.org
X-Mailman-Version: 2.1.20+
Precedence: list
List-Id: General discussion list for the Python programming language <python-list.python.org>
List-Unsubscribe: <https://mail.python.org/mailman/options/python-list>, <mailto:python-list-request@python.org?subject=unsubscribe>
List-Archive: <http://mail.python.org/pipermail/python-list/>
List-Post: <mailto:python-list@python.org>
List-Help: <mailto:python-list-request@python.org?subject=help>
List-Subscribe: <https://mail.python.org/mailman/listinfo/python-list>, <mailto:python-list-request@python.org?subject=subscribe>
Newsgroups: comp.lang.python
Message-ID: <mailman.143.1435429368.3674.python-list@python.org>
Lines: 21
NNTP-Posting-Host: 2001:888:2000:d::a6
X-Trace: 1435429368 news.xs4all.nl 2823 [2001:888:2000:d::a6]:50443
X-Complaints-To: abuse@xs4all.nl
Xref: csiph.com comp.lang.python:93257

On 06/27/2015 07:38 AM, Grant Edwards wrote:
> On 2015-06-26, Randall Smith <randall@tnr.cc> wrote:
>
>> The only person who can read a file is the owner.
>
> That's always the plan, but many a successful exploit has been based
> on breaking that assumption.  If privacy actually matters, that's not
> a good assumption to rely on as a single point of failure.
>
> --
> Grant
>


The owner (client software) encrypts the data using AES.  This is the 
default behavior of the client software.  If the client chooses to 
disable encryption, that's their issue for sure.  I'm trying to make 
sure it doesn't become the storage server's issue too.

-Randall