[prev in list] [next in list] [prev in thread] [next in thread]
List: gnupg-users
Subject: RE: Script line
From: "Robert Kerry" <robert.kerry () thephpsite ! com>
Date: 2003-09-04 15:32:06
[Download RAW message or body]
Hi,
> This shows your passphrase to other users on the system
> because they can read
> your command line parameters. There is a reason why it is
> not possible to use
> the passphrase as a command line parameter for GnuPG.
It goes through a bi-directional pipe which I think prevents any
security issues. I was wondering whether you can see any mistakes as
it's not working.
Thanks,
Rob
> -----Original Message-----
> From: Robert Schiele [mailto:rschiele@uni-mannheim.de]
> Sent: 04 September 2003 16:05
> To: Robert Kerry
> Cc: gnupg-users@gnupg.org
> Subject: Re: Script line
>
>
> On Thu, Sep 04, 2003 at 03:34:40PM +0100, Robert Kerry wrote:
> > Hi,
> >
> > Can anyone see anything wrong with this script line? It's
> part of a PHP
> > script although should be the same in most C based languages.
> >
> >
> > $command = "echo '$passphrase\n$plaintext' | gpg --clearsign --batch
> > --passphrase-fd 0";
>
>
> Robert
>
> --
> Robert Schiele Tel.: +49-621-181-2517
> Dipl.-Wirtsch.informatiker mailto:rschiele@uni-mannheim.de
>
---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.506 / Virus Database: 303 - Release Date: 01/08/2003
_______________________________________________
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic