06-20-2007
Here's what my process looks like:
1 - I receive a PGP encrypted file to server A.
2 - I make a call to a key store on another server (server B) to pick up the private key needed to perform the decryption on server A.
3 - I decrypt the file, and run an encryption routine on the account number portion of the decrypted file. I may encrypt the entire file, though not sure yet.
4 - I send the protected file off to its destination server (server C).
5 - I now need to permanently delete (ensure the data cannot be recovered from the disk utilizing any software or hardware scanning device) the private key picked up from step 2 in addition to the decrypted file from step 3.
I hope you can see where my pain is, and I'm not sure if you're tail command would sufficiently protect the information. Can you confirm?
10 More Discussions You Might Find Interesting
1. Shell Programming and Scripting
Hello people,
In shell scripts if some sensitive data is set into the env so that it is available to other scripts called within those scripts -- Are there are security implications ?
-- I believe the scope of those environment variables ends with the execution of the script.
-- I see that... (4 Replies)
Discussion started by: tipsy
4 Replies
2. Solaris
Hie
I am running a sun solaris server of about 300 gigabytes disk capacity. The problem is that the machine has been having problems over the past year and at times the machine would just freeze or hang and had to be re-booted. Consequently there are too many entries in the lost+found... (1 Reply)
Discussion started by: Ranganai
1 Replies
3. Shell Programming and Scripting
Hi Friends.
I have a file called install.data which has fields like :
XXXXX
ACVCGFFTFY UAHIUH OI
CONNECTION=tape/11/
LOCATAION=08-90-89
SIZE=90
I had to change the values of some of these variables. So i did :
grep "SIZE" instal.data | sed 's/*/00/' ...this is working fine on command... (4 Replies)
Discussion started by: vijaya2006
4 Replies
4. UNIX for Dummies Questions & Answers
Hi!
i want to replace ; by ok in a file as below
test1(filename) containt:-
Hi i am kaushlesh; i am new to Unix.
i want permanent change in the file like below:-
Hi i am kaushlesh ok i am new to unix
How i will complite this..? (2 Replies)
Discussion started by: kaushelsh168
2 Replies
5. UNIX for Dummies Questions & Answers
Hi All,
I have an ftp process that is connecting to a Solaris server and pushing files into a directory. The default file permissions are rw-r--r-- . I want the file permissions to be rw-rw-r--. How can I configure the directory so any file created there will have the permissions... (6 Replies)
Discussion started by: rob4732
6 Replies
6. Post Here to Contact Site Administrators and Moderators
Hello,
Can you please delete or modify a post that contains sensitive data. I can't post full links, here's the end of the link: shell-programming-and-scripting/94965-help-shell-scripting-modify-user-creation-script-oracle-database.html
It's got a lot of data that should never be posted on... (2 Replies)
Discussion started by: JonHeller
2 Replies
7. Post Here to Contact Site Administrators and Moderators
HI Sir ,
please remove the sensitive data from the post
https://www.unix.com/unix-for-advanced-and-expert-users/200219-ssh-issue.html
please blank the following terms
/home/infafi/Informatica/PowerCenter8.1.1/server/bin
iminfu01uat
... (4 Replies)
Discussion started by: ptappeta
4 Replies
8. Post Here to Contact Site Administrators and Moderators
Hi Sir ,
Please remove the following code from the post
https://www.unix.com/unix-for-advanced-and-expert-users/210081-ftp-issue.html
thanks
Prabhu (7 Replies)
Discussion started by: ptappeta
7 Replies
9. Post Here to Contact Site Administrators and Moderators
Hi Sir,
please remove following terms from post as it is sensitive data
https://www.unix.com/shell-programming-and-scripting/235655-print-single-line.html
ifeeds
fidedev
ironsides
feedmgr
thanks a lot
prabhu (1 Reply)
Discussion started by: ptappeta
1 Replies
10. Post Here to Contact Site Administrators and Moderators
Hi
Kindly remove the following from the post . These are confidential info posted by mistake
https://www.unix.com/shell-programming-and-scripting/201037-perl-while-loop-each.html
please remove the comments section which is first 16 lines in the perl script .
Also please remove the ... (1 Reply)
Discussion started by: ptappeta
1 Replies
LEARN ABOUT DEBIAN
tpmtoken_protect
tpmtoken_protect(1) General Commands Manual tpmtoken_protect(1)
TPM Management - tpmtoken_protect
NAME
tpmtoken_protect - encrypt or decrypt data using a symmetric key stored in the user's TPM PKCS#11 data store
SYNOPSIS
tpmtoken_protect [ OPTION ]
DESCRIPTION
tpmtoken_protect will encrypt or decrypt data using a symmetric key that is stored in the user's data store. The key used to protect the
data is a 256-bit AES key stored as a private Secret Key PKCS#11 object. The object has the PKCS#11 label attribute of 'User Data
Protection Key'. The key is generated by the TPM PKCS#11 implementation when it is needed the first time. Since it is generated as a
private object, it is protected by the TPM on the platform.
This command requires the '-i' and '-o' command options to be specified.
-h, --help
Display command usage info.
-v, --version
Display command version info.
-l, --log [none|error|info|debug]
Set logging level.
-d, --decrypt
Perform a decryption operation
-e, --encrypt
Perform an encryption operation
-i, --infile FILE
Use FILE as the input to the specified operation
-k, --token STRING
Use STRING to identify the label of the PKCS#11 token to be used
-o, --outfile FILE
Use FILE as the output of the specified operation
SEE ALSO
tpmtoken_init(1), tpmtoken_import(1), tpmtoken_setpasswd(1), tpmtoken_objects(1)
REPORTING BUGS
Report bugs to <trousers-users@lists.sourceforge.net>
TPM Management 2005-04-25 tpmtoken_protect(1)