Well if the server gets hacked and there able to read the script, I
have bigger problems. The pass doesn't matter too much since it's just
for passing a single file between two servers, not like it's multiple
recipients or anything. Plus the public key isn't even published and
the file isn't even s
You still have to put the password on the command line... Very insecure. I
keep waiting for gpgme so I can work on a --enable-gpgme
What you have is prolly the best solution right now, though. And good hack w/
the home directory.
On Thursday 07 November 2002 08:19 am, Adam Voigt wrote:
> Ok,
Ok, here's what I ended up with, and it worked:
exec("HOME=\"/home/apache\";/bin/echo \"MYPASS\" | /usr/bin/gpg --no-tty
--passphrase-fd 0 -o /path/to/decrypted/file -d
/path/to/encrypted/file");
I had to do the HOME variable setting because according
to the log file, GPG was looking for it's .gp
3 matches
Mail list logo
