GPG agent for automated processing

Brian Minton
Wed Apr 9 22:39:02 2003

Hash: SHA1

On Wed, Apr 09, 2003 at 09:31:35AM -0700, Joseph Bruni wrote:
> I would like to solicit advice regarding automating decryption
> using GPG. Currently, the easiest method I've used is to simply
> have no pass-phrase on the private key, and just ensure that it
> is unreadable by any user other than the owner. I've looked at
> using the - --passphrase-fd option, but that simply transfers
> the weakness to another place.
> Instead, I would like to know if anyone uses or would suggest
> the use of the gpg-agent for automating decryption. Presumably,
> the passphrase would need to be known only once as the system
> is started by an operator. Since our system almost never needs
> to be cycled, I'm thinking this might be a good approach.

you might want to look into quintuple agent.  It includes
wrappers for gpg and stores passphrases securely.

- -- 
Brian Minton             |    OpenPGP fingerprint:        |    81BE 3A84 A502 ABDD B2CC |    4BFD 7227 8820 5703 7472   
Live long, and prosper longer!       KeyID: 0x57037472
Version: GnuPG v1.2.1 (GNU/Linux)