gpg from cronjobs
Dave Harvill
dlh@zns.acu.cs.umb.edu
Tue, 21 Dec 1999 22:36:07 -0500 (EST)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Tue, 21 Dec 1999, Paul Letta wrote:
> If I want to have process (say from a cronjob) decrypt files with no
> interaction, what is the best way ? I have created a keypair for this
It seems to me that being able to decrypt without interaction defeats (to
a degree) the intent of having it encrypted in the first place. That
being that your interaction is required to decrypt it, and thus reveal its
contents .
> purpose and did not put in a passphase. This worked, but I
know this
> isn't very secure. So I also made a keypair with a passphase, but I
> haven't found a way to supply the passphrase on the command line (which
> is also insecure).
Both true.
>
> Any thought on which is the lesser of two evils? Or perhaps a better
> solution to this?
>
> Thanks,
>
> Paul
I believe there is a batch mode which can read the passphrase from a file.
I suppose you could also tie some scripts together to accomplish this.
Perl by itself might be able to, or perhaps you can use excpect. Either
of these, in fact any solution, will involve either putting the passphrase
in one kind of file or another, or leaving no passphrase on the key.
- -dave
~~~~~~~~~~~~~~~~~~~~~~
dlh@acu.cs.umb.edu
http://www.cs.umb.edu
~~~~~~~~~~~~~~~~~~~~~~
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.1 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE4YEcukk29ehvsO3kRAvLcAKDA63cZ9txxly2T1SDj5PR4TcnArgCglTpa
dlj3s/0e1Qpmt0kPKUm5dYc=
=zmr6
-----END PGP SIGNATURE-----