On Mon, Jan 11, 2010 at 08:13:40PM +0100, Fran?ois Chenais wrote: > 2010/1/11 Arno Wagner <arno@xxxxxxxxxxx> > > > On Sun, Jan 10, 2010 at 10:22:28PM +0100, Fran?ois Chenais wrote: > > > Hello, > > > > > > Actually, dm-crypt uses stdin and file for password input. > > > > > > Is there any plan to add the option of using external > > > gpg/RSA/pkcs#12/pkcs#10 files ? > > > > > > The idea is to use an crypted file stored on an external device (USB KEY, > > > token...) > > > > You can already do that by using a named pipe as file (or stdin) > > and then having a preprocessor that decrypts the encrupted key file > > to this pipe. This is actually the preferred way, as it keeps the > > complexity of cryptsetup low. > > > > > Something like this ? > > openssl pkcs12 -in file.p12 -nodes -nocerts | cryptsetup ... > > Fran?ois > Essentially, yes. Arno -- Arno Wagner, Dr. sc. techn., Dipl. Inform., CISSP -- Email: arno@xxxxxxxxxxx GnuPG: ID: 1E25338F FP: 0C30 5782 9D93 F785 E79C 0296 797F 6B50 1E25 338F ---- Cuddly UI's are the manifestation of wishful thinking. -- Dylan Evans If it's in the news, don't worry about it. The very definition of "news" is "something that hardly ever happens." -- Bruce Schneier _______________________________________________ dm-crypt mailing list dm-crypt@xxxxxxxx http://www.saout.de/mailman/listinfo/dm-crypt
