Re: ECC keypair generation with password

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

> From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
> >
> > In the script, I used this:
> >
> >     openssl ec -aes128 -passout pass:rrrr -in tmpecprivkeydec.pem
> -out tmpecprivkey.pem
>
> I try to avoid putting sensitive information in command-line arguments.
>
> If you're using "bash" (which has "printf" as a built-in) you could use:
>
>    -passout file:<(printf "rrrr\n")
>
> which does not create any processes with the password in the argument vector.
> Example:
>
> $ openssl enc -aes128 -pass file:<(printf "rrrr\n") <<EOF | openssl
> enc -d -aes128 -pass file:<(printf "rrrr\n")
> > foobar
> > EOF
> foobar

Understood, but this is just for a regression test script.

Thanks.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux