It's GPG is starting to show it's age, Debian abandoning it for signing packages and it's general lack of usage.<p>Was wondering how one could probably use <a href="https://github.com/FiloSottile/age" rel="nofollow">https://github.com/FiloSottile/age</a> or something.<p>(Not an emacs pro, so sure don't know some of the trivial ways to use this)
A good place to ask questions like this is the (very friendly) Emacs subreddit.[1]<p>[1] <a href="https://reddit.com/r/emacs" rel="nofollow">https://reddit.com/r/emacs</a>
>Debian abandoning it for signing packages and it's general lack of usage.<p>This is not true. There was a proposal near the start of the year. That proposal has been almost entirely ignored.<p>Would age provide any advantage over GnuPG to make it worth the bother to switch to a new message format?<p>* <a href="https://articles.59.ca/doku.php?id=pgpfan:agevspgp" rel="nofollow">https://articles.59.ca/doku.php?id=pgpfan:agevspgp</a>
If you have gnupg installed, emacs can just open foo.org.gpg files directly. It decrypts on load and re-encrypts on save.<p>Probably you would get better answers about Emacs on <a href="https://emacs.stackexchange.com/" rel="nofollow">https://emacs.stackexchange.com/</a> or <a href="https://www.reddit.com/r/emacs/" rel="nofollow">https://www.reddit.com/r/emacs/</a> .
GPG isn't going anywhere and Debian is not abandoning it.<p>EasyPG is very mature in Emacs, makes using GPG a breeze and is integrated really well. Age doesn't even support signing and has no Emacs integration.
Have Debian abandoned it? Official reference to that fact if you have it would be nice.<p>I’m aware of the wiki article but that’s not any official position. In the very least anyone can edit that wiki.
Why not keep the notes in a VeraCrypt/TrueCrypt drive/partition? You can sidestep all the gpg complexity, and you get a little better protection since note filenames won't even be visible (and if you're really paranoid you can entirely obfuscate and hide the encrypted drive in unused partition space).<p>Or just tick on the full disk encryption option in your OS (assuming it's a modern one like Win 10, recent Ubuntu, etc.). It's just as good at keeping your data protected at rest as any other encryption option you can run in userspace, and there's less chance of some file operation snafu accidentally unencrypting or leaking your data.
GPG-PGP works well,<p>has tooling on pretty much every platform,<p>is a mature, well-established product.<p>The complicated features are optional.<p>Using something like age, with one reference implementation in Go, not supported by most languages, nor time-tested, is just asking for trouble, like surprise exploits or bitrot making your data unusable.<p>I am perplexed by the frequency of "PGP/GPG is old, let's replace it with something new and untested" posts on HN...<p>In software development, OLD is GOOD.<p>(As a side note, I don't think Debian has been at the forefront of rational decisionmaking for a while, so I wouldn't watch them too closely.)