decrypting input, not a file...

Paul Evad pevad@kudosnet.com
Thu, 18 May 2000 13:03:21 -0700 

At 2:26 PM -0500 5/18/00, Frank Tobin wrote:

>Paul Evad, at 19:24 -0700 on Wed, 17 May 2000, wrote:

>

>>  echo '$passphrase' | gpg -v --batch --no-secmem-warning

>>  --passphrase-fd 0 --decrypt $file

>>

>>  However, in a particular case... I would like to decrypt a 'string'

>>  but don't want to necessarily write the 'string' to a file.

>

>While I think using shell for anything sensitive is ridiculous...this

>might work.  I don't recommend passing in passphrases to stdin, however,

>in case you run situations where the passhrase isn't needed, and is

>processed as part of the normal message by GnuPG.

>

>echo "$passphrase\n$string" | gpg --passphrase-fd 0 --decrypt

>

>

>>  Please CC me on reply's, I haven't subscribed to the list yet....

>

>It is advisable for you to subscribe.  Lots of goodies for those who do :)


Thanks for the feedback,

If anyone is interested... here is the resulting PHP script that will 
encrypt/decrypt data using this hack..

<pre>
<?

// exec($command, $encrypted, $errorcode);

putenv("HOME=/home/httpd/");
if($tocrypt) {
   // encrypt and set $code to result.
   $command="echo '$tocrypt' | gpg -a -q --no-tty -e -u $user -r $user";
   // $code = `$command`;
   // echo "code: $code";
   exec($command, $encrypted, $errorcode);
   // echo "command: $command \n";
   while(list($key,$val) = each ($encrypted)) {
     $code.="$val\n";
   }
   // echo "\n errorcode: $errorcode <br>\n code: $code <br>\n ";
   // echo "encrypted: " . array_tunnel($encrypted);
}
if($passphrase && $code) {
   // decrypt the code...
   $command="echo '$passphrase\n$code' | gpg -v --batch 
--no-secmem-warning --passphrase-fd 0 --decrypt";
   exec($command, $encrypted, $errorcode);
   // echo "command: $command \n";
   // echo "\n errorcode: $errorcode <br>\n code: $code <br>\n ";
   // echo "encrypted: " . array_tunnel($encrypted);
   echo "your secret message was: ";
   while(list($key,$val) = each ($encrypted)) {
     echo "$val\n";
   }
}
?>
</pre>
<form method=post action=gpgtest.php3>
<input type=text name=passphrase>
<textarea name="code" rows=10 cols=80><? echo $code ?>
</textarea>
<input type=submit value=decrypt>
</form>
</pre>
<hr>
<pre>
<form method=post action=gpgtest.php3>
<input type=text name=tocrypt>
<input type=submit value=encrypt>
</form>
</pre>
--------------------- Kudosnet Technologies Inc. ---------------------

For a copy of our most recent newsletter send a blank email to:
mailto:latestnews@kudosnet.net

---------------------------- 1-877-885-8367 --------------------------