Both private and public post email notifications should be encrypted.
Sakshi Jain
Public
Seen by 130
According to issues #4266 and #4342, the email notifications received from limited posts should not contain any content, only a note that someone has responded (or commented) to the original post while the email notifications received from the public posts should provide the full content of the thread in the email itself and the user should be able to answer to the comments via email.
The best way would be to encrypt both public and private email notifications.
1. In case of private posts, the content will be displayed as well as remain safe in the email notifications.
2. In case of public posts, the user will be able to respond to the activity on his/her posts via email itself.
An important point to ponder would be to make the implementation user friendly.
Justin Moore Sat 14 Sep 2013 11:33AM
It all comes down to a trade-off between security or convenience. We can lean more toward convenience while risking security but in this case is it worth it? How many users would miss the ability to read a few sentences in an email when they will most likely go to Diaspora directly anyway? Finding a middle ground between convenience and security in this case is I think a waste of effort.
Going for the more secure route in this situation and disabling content in emails completely is the better option. Not only is it the easiest to implement but also the most secure for everyone.
Maciek Łoziński Sat 14 Sep 2013 11:41AM
Maybe a we could allow a summary of post in email only when someone has an ability to decrypt emails and will upload encryption key to the pod?
Flaburgan Sun 15 Sep 2013 1:31AM
Why can’t we make it optional? For those who care about leaking private info by comments to limited posts can turn it off. We could even turn it off by default and include a line saying it can be turned on in the settings.
Because if we do that, the user has no way to know if his message will be sent or not, because you can't know the settings of the other users.
Sakshi Jain Sun 29 Sep 2013 11:18AM
@goob's idea has got the max support, so I summarized it this way: https://docs.google.com/spreadsheet/ccc?key=0AkEfkreOFIUzdHA1OEtpbVdZOGtYcW5TY2RZU1BpZWc#gid=0
Is this what everyone agrees on?
I am not sure about private messages. I can work on it later if I am able to cover this much target :)
goob Sun 29 Sep 2013 11:24AM
Could you post your summary here? That's on a Google document, so I don't want to click the link as I prefer not to have any interactions with Google.
Jonne Haß Sun 29 Sep 2013 11:34AM
Removing everything to later add it again doesn't make much sense to me.
Sakshi Jain Sun 29 Sep 2013 12:35PM
@goob I have attached it here.
goob Sun 29 Sep 2013 12:43PM
Thanks.
goob Sun 29 Sep 2013 12:45PM
I would simplify it thus:
Private post: show a link (no text)
Public post: show a summary and a link.
Only one step needed!
There are some difficult technical issues to solve regarding encryption of emails, so I think for now we should concentrate on removing private posts from email notifications. Keep it simple!
goob · Mon 9 Sep 2013 7:53PM
For that to be of any use, it would have to be that I (for example) can switch it off for any emails sent to anyone else for any post I make or any comment I make on someone else's limited post, not only for any email that is sent to me. That sounds like a very difficult thing to code for.