Reading passphrase from an environment variable.

David Shaw dshaw at
Fri Jan 3 00:35:02 CET 2003

On Thu, Jan 02, 2003 at 03:34:02PM -0800, John Mathew wrote:
> Hi,
> Whenever I decrypt or encrypt using GPG it prompts for the passphrase.  I
> would like to set the passphrase in a UNIX environment variable and every
> time GPG should read from this variable. The idea is to run decryption and
> encryption using shell scripts which does not require any prompting.

There are many reasons why this is a bad idea security-wise, the most
notable is that any other user on the box can see your environment,
and hence your passphrase.

However, if these reasons do not apply to your situation:

  echo $passphrase | gpg --passphrase-fd 0 ......

The --passphrase-fd option will read the passphrase from whatever fd
is specified during GnuPG startup.


   David Shaw  |  dshaw at  |  WWW
   "There are two major products that come out of Berkeley: LSD and UNIX.
      We don't believe this to be a coincidence." - Jeremy S. Anderson

More information about the Gnupg-devel mailing list