[OTR-users] Is there any way to prevent the "You attempted to send an unencrypted message" dialog?
Jason Cohen
jcohen07 at brandeis.edu
Fri Apr 1 09:21:04 EST 2005
Ian Goldberg wrote:
>On Thu, Mar 31, 2005 at 04:30:12PM -0500, Jason Cohen wrote:
>
>
>>(user sends message)
>>Setup Key Exchange
>>If ok, send message encrypted
>>If fail, tell user that the message was not sent + recipient does not
>>have OTR installed and can't setup private communications.
>>
>>
>
>But this is the problem: how do you tell when "fail" happens. If the
>other guy's not running OTR, nothing will ever come back. If he *is*
>running OTR, but doesn't yet have your fingerprint, you'll only get
>something back after the other guy has accepted your fingerprint. This
>can be an arbitrary amount of time, so a simple timeout won't really
>work.
>
> - Ian
>_______________________________________________
>OTR-users mailing list
>OTR-users at lists.cypherpunks.ca
>http://lists.cypherpunks.ca/mailman/listinfo/otr-users
>
>
How is the situation here different from any other time you attempt to
setup an OTR private connection? The only difference it seems to me is
that normally the session is created and then the user attempts to send
a message encrypted. In this case, if the connection can't be made, the
message isn't sent. However, if the encrypted session can't be setup,
wouldn't it be obvious that the encrypted message couldn't be sent?
(assuming a person knew the policy they manually set). The warning
message only informs the user that unencrypted messages can't be sent
under the policy- something the user would presumably already know. It
wouldn't tell the user that the message couldn't be sent.
Jason
More information about the OTR-users
mailing list