03-15-2009
Like I said, a file the user really can't decrypt is a file the machine really can't decrypt. To get something even root can't decrypt you'll need something out of root's hands, like the kernel or a hardware cryptoprocessor, to do the dirty work. Sadly this goes beyond my knowledge, but the TPM's in modern computers might be related to this.
10 More Discussions You Might Find Interesting
1. Shell Programming and Scripting
Hi,
I want to encrypt a file in UNIX(HP-UX) and Transfer to a FTP server. Our FTP server is Windows NT. SO, how can i decrypt the file which is encrypted in UNIX, in Windows NT.
Please, help me this is urgent.
Siva Gorantla:confused: (3 Replies)
Discussion started by: gorantla
3 Replies
2. UNIX for Advanced & Expert Users
Hi,
I do not want the plaintext password to appear in the netrc file. So I want to encrypt the password. Is there a way to encrypt the password and still make ftp to use the netrc ?
Thanks in advance.
-Gow:confused: (2 Replies)
Discussion started by: ggowrish
2 Replies
3. Shell Programming and Scripting
Hi All,
I have connected to MainFrame system from Unix AIX Server then using ftp i get the file "NJUSP_XYXYXY_NONONO" to Unix. Now when i tried opening this file using cat/more i am getting the content fully in encrypted format. please help me to read the content of this file from my Unix... (5 Replies)
Discussion started by: Arunprasad
5 Replies
4. Shell Programming and Scripting
Hello Everyone,
How do we run vi/vim encrypted shell script without decryption on multiple servers. It is a simple bash script and vim -nx <filename> has been used to encrypt with desired password. Now I have few errors, the syntax is absolutely fine as I have run that script multiple times on... (0 Replies)
Discussion started by: lovesaikrishna
0 Replies
5. Solaris
i have file encrypted with openssl and i can decrypt and view its content by below code
openssl enc -d -blowfish -pass file:secret_key -in input_file
now i need to edit the input_file . i have to remove three lines from this file . how can this be done ? (3 Replies)
Discussion started by: chidori
3 Replies
6. UNIX for Dummies Questions & Answers
i have an application that uses the encrypted password that's in the /etc/shadow file.
i copied the line for the particular username i was interested it in from shadow file and i pasted it into the password file of the application. the application is nagios.
this application allowed that... (5 Replies)
Discussion started by: SkySmart
5 Replies
7. UNIX for Dummies Questions & Answers
Well I did something stupid. I opened a file using vi, and accidentally saved it using <esc>:Xx.
So I know the key is x, but what I can't figure out is how to save the file without encryption. (4 Replies)
Discussion started by: jgt
4 Replies
8. UNIX for Advanced & Expert Users
Hello All,
Is there a way to determine how many public keys are embedded or used to encrypt in a GPG file with out decrypting the actual encrypted file. I know i can see the keys & email id's used when we decrypt it, but curious to find a command if any to know with out decrypting the actual file... (2 Replies)
Discussion started by: Ariean
2 Replies
9. Shell Programming and Scripting
Hi,
I am trying to find out the original file size of an encrypted file in SunOS.
The file was decrypted with gpg command.
I want to know the size of the orginal file without decrypting it. I am using the below command, but it is not working for big files(more than 1 GB).
gpg --passphrase... (4 Replies)
Discussion started by: vsachan
4 Replies
10. Shell Programming and Scripting
Linux System having all Perl, Python, PHP (and Ruby) installed
From a Shell script, can call a Perl, Python, PHP (or Ruby ?) file
eg
eg
a Shell script run in a case statement call to run a php file, also Perl or/and Python file???
Like
#!/usr/bin/bash
....
....
case $INPUT_STRING... (1 Reply)
Discussion started by: hoyanet
1 Replies
LEARN ABOUT CENTOS
filter::decrypt
decrypt(3) User Contributed Perl Documentation decrypt(3)
NAME
Filter::decrypt - template for a decrypt source filter
SYNOPSIS
use Filter::decrypt ;
DESCRIPTION
This is a sample decrypting source filter.
Although this is a fully functional source filter and it does implement a very simple decrypt algorithm, it is not intended to be used as
it is supplied. Consider it to be a template which you can combine with a proper decryption algorithm to develop your own decryption
filter.
WARNING
It is important to note that a decryption filter can never provide complete security against attack. At some point the parser within Perl
needs to be able to scan the original decrypted source. That means that at some stage fragments of the source will exist in a memory
buffer.
Also, with the introduction of the Perl Compiler backend modules, and the B::Deparse module in particular, using a Source Filter to hide
source code is becoming an increasingly futile exercise.
The best you can hope to achieve by decrypting your Perl source using a source filter is to make it unavailable to the casual user.
Given that proviso, there are a number of things you can do to make life more difficult for the prospective cracker.
1. Strip the Perl binary to remove all symbols.
2. Build the decrypt extension using static linking. If the extension is provided as a dynamic module, there is nothing to stop someone
from linking it at run time with a modified Perl binary.
3. Do not build Perl with "-DDEBUGGING". If you do then your source can be retrieved with the "-Dp" command line option.
The sample filter contains logic to detect the "DEBUGGING" option.
4. Do not build Perl with C debugging support enabled.
5. Do not implement the decryption filter as a sub-process (like the cpp source filter). It is possible to peek into the pipe that
connects to the sub-process.
6. Check that the Perl Compiler isn't being used.
There is code in the BOOT: section of decrypt.xs that shows how to detect the presence of the Compiler. Make sure you include it in
your module.
Assuming you haven't taken any steps to spot when the compiler is in use and you have an encrypted Perl script called "myscript.pl",
you can get access the source code inside it using the perl Compiler backend, like this
perl -MO=Deparse myscript.pl
Note that even if you have included the BOOT: test, it is still possible to use the Deparse module to get the source code for
individual subroutines.
7. Do not use the decrypt filter as-is. The algorithm used in this filter has been purposefully left simple.
If you feel that the source filtering mechanism is not secure enough you could try using the unexec/undump method. See the Perl FAQ for
further details.
AUTHOR
Paul Marquess
DATE
19th December 1995
perl v5.16.3 2013-04-02 decrypt(3)