GPG agent for automated processing

[Brian Minton]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Wed, Apr 09, 2003 at 09:31:35AM -0700, Joseph Bruni wrote:
> I would like to solicit advice regarding automating decryption
> using GPG. Currently, the easiest method I've used is to simply
> have no pass-phrase on the private key, and just ensure that it
> is unreadable by any user other than the owner. I've looked at
> using the - --passphrase-fd option, but that simply transfers
> the weakness to another place.
> 
> Instead, I would like to know if anyone uses or would suggest
> the use of the gpg-agent for automating decryption. Presumably,
> the passphrase would need to be known only once as the system
> is started by an operator. Since our system almost never needs
> to be cycled, I'm thinking this might be a good approach.

you might want to look into quintuple agent.  It includes
wrappers for gpg and stores passphrases securely.

- -- 
Brian Minton             |    OpenPGP fingerprint:     
brian@minton.name        |    81BE 3A84 A502 ABDD B2CC
http://brian.minton.name |    4BFD 7227 8820 5703 7472   
Live long, and prosper longer!       KeyID: 0x57037472
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)

iD8DBQE+lISMcieIIFcDdHIRAkkPAJsFVvVlZdXfCjM+IOU8zjCfVQXBUgCdE0ww
NqI5ymJbAT6lzIBRit2CYZ0=
=7UXc
-----END PGP SIGNATURE-----