[prev in list] [next in list] [prev in thread] [next in thread] 

List:       gnupg-users
Subject:    Re: GPG Passphrase Caching
From:       "Robert J. Hansen" <rjh () sixdemonbag ! org>
Date:       2007-11-20 23:27:51
Message-ID: 47436D77.7080008 () sixdemonbag ! org
[Download RAW message or body]

Matthew Loring wrote:
> I am using the binary version of GPG for Windows, version 1.47.  
> Everything works fine, but I have a need to automatically decrypt  
> files through a script. The hangup that I have right now is that GPG  
> wants me to enter in my passphrase when decrypting files. Is there a  
> way to cache the passphrase or save it in a file so that it does not  
> prompt me to enter my passphrase for my secret key?

Yes, although this usage is not recommended.

--passphrase <string>

--passphrase-file <filename>


Please note that the former will make the passphrase available to anyone
with enough privileges to read the process table, and the latter will
leave your passphrase around in a file on the system which you're then
responsible for securing somehow.

You may want to simply remove the passphrase from the key, which may be
a superior solution.  At least then there's no false sense of security
which might otherwise accompany either of --passphrase or --passphrase-file.


_______________________________________________
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
[prev in list] [next in list] [prev in thread] [next in thread]