Re: encryption

To: debian-user@lists.debian.org
Subject: Re: encryption
From: David Wright <deblis@lionunicorn.co.uk>
Date: Sat, 21 Apr 2018 11:36:05 -0500
Message-id: <[🔎] 20180421163605.GA8694@alum>
Reply-to: debian-user@lists.debian.org
In-reply-to: <[🔎] 20042018201750.130d9143617e@desktop.copernicus.org.uk>
References: <[🔎] 20042018201750.130d9143617e@desktop.copernicus.org.uk>

On Fri 20 Apr 2018 at 20:38:48 (+0100), Brian wrote:
> T have a script. It contains an important password.

If you   cat /usr/local/bin/myscript   do you see your important
password on the screen?

> I have encrypted the script with
> 
>   scrypt [enc] -t 10 /usr/local/bin/myscript
> 
> I can, of course, decrypt it with
> 
>   scrypt dec /usr/local/bin/myscript
> 
> and then execute the script.
> 
> The two last steps have been combined into
> 
>   DECRYPT=$(scrypt dec /usr/local/bin/myscript) && eval "$DECRYPT"
> 
> Should I have any more concerns with this command than I have with the
> two-step process?

If so, then won't the password be revealed by ps while eval is
evaluating it?

Cheers,
David.

Reply to:

Follow-Ups:
- Re: encryption
  - From: Brian <ad44@cityscape.co.uk>
- Re: encryption
  - From: David Christensen <dpchrist@holgerdanske.com>

References:
- encryption
  - From: Brian <ad44@cityscape.co.uk>

Prev by Date: Re: mkisofs
Next by Date: A Question about a supposedly missing file
Previous by thread: Re: encryption
Next by thread: Re: encryption
Index(es):
- Date
- Thread