Using gnupg to crypt credentials used by application to access a database server

Michael Kesper mkesper at fsfe.org
Mon Jul 16 12:57:17 CEST 2018


Hi all,

Am Montag, den 16.07.2018, 09:29 +0200 schrieb Matthias Apitz:
> Michael, I do use pass too for all my firefox credentials for access
> of
> webpages and services, i.e. I know how this works. I use for this
> GnuPG
> together with an OpenPGP card and to unlock the password storage I
> have
> to provide the 6 digit PIN of the card. The storage remains unlocked
> until card removal. This works all fine.
> 
> But, I do not see how this could fit into the scene I described. When
> an
> application server starts on the UNIX host, it needs the database
> access
> credentials and there is no human to key in any PIN, for example when
> the server start at boot time ...

Please have a look at Werner's answer.

Best wishes
Michael
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 659 bytes
Desc: This is a digitally signed message part
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20180716/6a5f1b92/attachment.sig>


More information about the Gnupg-users mailing list