Script line
Robert Kerry
robert.kerry@thephpsite.com
Thu Sep 4 17:30:02 2003
Hi,
> This shows your passphrase to other users on the system
> because they can read
> your command line parameters. There is a reason why it is
> not possible to use
> the passphrase as a command line parameter for GnuPG.
It goes through a bi-directional pipe which I think prevents any
security issues. I was wondering whether you can see any mistakes as
it's not working.
Thanks,
Rob
> -----Original Message-----
> From: Robert Schiele [mailto:rschiele@uni-mannheim.de]
> Sent: 04 September 2003 16:05
> To: Robert Kerry
> Cc: gnupg-users@gnupg.org
> Subject: Re: Script line
>
>
> On Thu, Sep 04, 2003 at 03:34:40PM +0100, Robert Kerry wrote:
> > Hi,
> >
> > Can anyone see anything wrong with this script line? It's
> part of a PHP
> > script although should be the same in most C based languages.
> >
> >
> > $command = "echo '$passphrase\n$plaintext' | gpg --clearsign --batch
> > --passphrase-fd 0";
>
>
> Robert
>
> --
> Robert Schiele Tel.: +49-621-181-2517
> Dipl.-Wirtsch.informatiker mailto:rschiele@uni-mannheim.de
>
---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.506 / Virus Database: 303 - Release Date: 01/08/2003