gpg from cronjobs

Dave Harvill
Tue, 21 Dec 1999 22:36:07 -0500 (EST)

Hash: SHA1

On Tue, 21 Dec 1999, Paul Letta wrote:

> If I want to have process (say from a cronjob) decrypt files with no
> interaction, what is the best way ? I have created a keypair for this
It seems to me that being able to decrypt without interaction defeats (to a degree) the intent of having it encrypted in the first place. That being that your interaction is required to decrypt it, and thus reveal its contents .
> purpose and did not put in a passphase. This worked, but I
know this
> isn't very secure. So I also made a keypair with a passphase, but I
> haven't found a way to supply the passphrase on the command line (which
> is also insecure).
Both true.
> Any thought on which is the lesser of two evils? Or perhaps a better
> solution to this?
> Thanks,
> Paul
I believe there is a batch mode which can read the passphrase from a file. I suppose you could also tie some scripts together to accomplish this. Perl by itself might be able to, or perhaps you can use excpect. Either of these, in fact any solution, will involve either putting the passphrase in one kind of file or another, or leaving no passphrase on the key. - -dave ~~~~~~~~~~~~~~~~~~~~~~ ~~~~~~~~~~~~~~~~~~~~~~ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.1 (GNU/Linux) Comment: For info see iD8DBQE4YEcukk29ehvsO3kRAvLcAKDA63cZ9txxly2T1SDj5PR4TcnArgCglTpa dlj3s/0e1Qpmt0kPKUm5dYc= =zmr6 -----END PGP SIGNATURE-----