Gnupg Decryption Question

Steve Butler sbutler at
Fri Jul 24 16:02:29 CEST 2015

-----Original Message-----
From: Werner Koch [mailto:wk at] 
Sent: Friday, July 24, 2015 4:24 AM

On Thu, 23 Jul 2015 19:11, sbutler at said:
> This is a snippet of the script I use to decrypt any file coming to me that has my private key (or my companies private key)
>   $DFLT gpg_pass2 \
>   | gpg --homedir $homedir --quiet --passphrase-fd 0 --no-tty --skip-verify \
>         --no-permission-warning --no-mdc-warning --batch  \
>         --output "$oname" --decrypt "$x" > /dev/null 2>&1

If you receive arbitrary data you may want to add


to avoid a DoS using special crafted compression data.



I'll look into that.  We do IP filtering on the firewall so we do know who is getting to our SFTP box (on Aug 3 we will shut down port 21 and standard FTP).  All who send data to us must sign a business agreement (HIPAA rules).  One such does send us encrypted files that approach 25 GB in size -- yikes!!  Thankfully that is once a month.

CONFIDENTIALITY NOTICE: This e-mail message, including any attachments, 
is for the sole use of the intended recipient(s) and may contain 
and privileged information. Any unauthorized review, use, disclosure or 
distribution is prohibited. If you are not the intended recipient, please 
contact the sender by reply e-mail and destroy all copies of the original 

More information about the Gnupg-users mailing list