A Key-gen-config file that autodeletes?
Tue Sep 11 22:23:01 2001
-----BEGIN PGP SIGNED MESSAGE-----
On Dienstag, 11. September 2001 18:54, Edward Khoo wrote:
> Hi folks,
> It is good to hear such learned opinions. Being a relative newbie to
> these open source projects,
> it does looks to me that a decision probably have to made regarding
> this feature of supporting some sort of auto-capabilities.
> On the other hand, I am in computer technology just long enough to
> know that the answer is not going to be without trade-offs. :-|
> As long as there is no guarantee that the hardware is secure, any
> software decisions is hard to make.
> And the classic saying, "security is only as good as its weakest
> Also, this conversation have taken us away from my original concern
> of automating the passing in of interactive parameters.
> (assuming its a 'secure' computer)
> - How to get "--batch" to work in either command line or scripting
> support? - or If "--batch" is the option to use to pass in a config
> file in the first place?
> Here is Werner's original suggestion:
> gpg --gen-key --batch <$1
> rm $1
> Which did not work for me, as I am not sure of the data format that
> will be accepted.
'man gpg' would have told you the following
- --gen-key Generate a new key pair. This command is nor
mally only used interactively.
There is an experimental feature which allows
you to create keys in batch mode. See the file
doc/DETAILS in the source distribution on how to
And this is copied from doc/DETAILS:
Here is an example:
$ cat >foo <<EOF
%echo Generating a standard key
Name-Real: Joe Tester
Name-Comment: with stupid passphrase
# Do a commit here, so that we can later print "done" :-)
$ gpg --batch --gen-key -a foo
$ gpg --no-default-keyring --secret-keyring foo.sec \
--keyring foo.pub --list-secret-keys
sec 1024D/915A878D 2000-03-09 Joe Tester (with stupid passphrase) <firstname.lastname@example.org>
ssb 1024g/8F70E2C0 2000-03-09
If you have more questions have a look at doc/DETAILS where the format
is explained in detail.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org
-----END PGP SIGNATURE-----