Encrypting directories
David Shaw
dshaw@jabberwocky.com
Tue Jul 1 20:07:01 2003
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Tue, Jul 01, 2003 at 11:33:40AM -0400, Gordon Worley wrote:
> Many users have requested that I add directory encryption to
> GPGFileTool, a gpg front-end on OS X for performing cryptographic
> operations on files. GnuPG doesn't do this itself, but there are many
> ways in which I can wrap up directories into a single file for them.
>
> Initially I thought to tar the directories before encryption/signing
> since this is a very compatible format and on Mac OS X will only cause
> problems for files with resource forks (I plan to eventually add
> support for some other archival format, but I think tar is a good
> start). The problem is that I can't find a way to use tar without
> writing a file. I'd like to use pipes, although that probably isn't
> secure, either.
While it is possible to have a tempfile implementation of pipes that
isn't terribly secure, I thought the OSX pipes were true pipes.
Doing "tar -cf - thedirectory | gpg ..." should be secure.
David
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3rc1 (GNU/Linux)
Comment: Key available at http://www.jabberwocky.com/david/keys.asc
iD8DBQE/Ac4E4mZch0nhy8kRAlz/AJ9+5JM7HUeb+Y6noZyp2XPakWL1jQCgmA/U
BceZPOWGuVbvVoN0rAfbHoU=
=Lc45
-----END PGP SIGNATURE-----