GPG agent for automated processing
Wed Apr 9 22:39:02 2003
-----BEGIN PGP SIGNED MESSAGE-----
On Wed, Apr 09, 2003 at 09:31:35AM -0700, Joseph Bruni wrote:
> I would like to solicit advice regarding automating decryption
> using GPG. Currently, the easiest method I've used is to simply
> have no pass-phrase on the private key, and just ensure that it
> is unreadable by any user other than the owner. I've looked at
> using the - --passphrase-fd option, but that simply transfers
> the weakness to another place.
> Instead, I would like to know if anyone uses or would suggest
> the use of the gpg-agent for automating decryption. Presumably,
> the passphrase would need to be known only once as the system
> is started by an operator. Since our system almost never needs
> to be cycled, I'm thinking this might be a good approach.
you might want to look into quintuple agent. It includes
wrappers for gpg and stores passphrases securely.
Brian Minton | OpenPGP fingerprint:
email@example.com | 81BE 3A84 A502 ABDD B2CC
http://brian.minton.name | 4BFD 7227 8820 5703 7472
Live long, and prosper longer! KeyID: 0x57037472
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
-----END PGP SIGNATURE-----