pass phrase

Chuck Robey
Wed, 19 Jan 2000 20:53:47 -0500 (EST)

On Wed, 19 Jan 2000, Johan Wevers wrote:

> Because on multi-user systems other methods are easier to compromise the
> password: for example, if you could enter it on the command line, a simple
> ps -ax would reveal it on many unices.
> On the other hand, the fd method is also not 100% secure, on some systems
> users can access this information.
> Examples on how to use this method in perl scripts exist in the pgp 2.6
> documentation. I can mail the relevant parts to you if you're interested.
> I have also once implemented this in a C++ program that I can also mail
> (the programming is very sloppy compared to my current standards, but the
> techniques can be easily copied).
I could do it myself in C++ or perl. Any idea how to do it in tclsh, short of writing an installable command in C? In this environment, that wouldn't be totally impossible, but certainly not my first choice. I'm patching gpg into a running system. I can't find any way to access fd numbers in tcl.
---------------------------------------------------------------------------- Chuck Robey | Interests include C & Java programming, New Year's Resolution: I | electronics, communications, and will not sphroxify gullible| signal processing. people into looking up | I run FreeBSD-current(i386) and fictitious words in the | : FreeBSD-current(Alpha)| dictionary. | ----------------------------------------------------------------------------