05-27-2009
Accessing Encrypted content of the xml file
The data in the .xml file is being encrypted using the "blowfish" encryption of the "OpenSSL".
I want to access it in the UNIX shell script as :-
sqlplus -s <user_id>/<decrypted_password_from_.xml_file>@<some_script> << <MARKER>
do the things here
do the things here
do the things here
do the things here
<MARKER>
I do not know how to use it to get the decrypted password.
10 More Discussions You Might Find Interesting
1. UNIX for Advanced & Expert Users
Hi,
I do not want the plaintext password to appear in the netrc file. So I want to encrypt the password. Is there a way to encrypt the password and still make ftp to use the netrc ?
Thanks in advance.
-Gow:confused: (2 Replies)
Discussion started by: ggowrish
2 Replies
2. UNIX for Dummies Questions & Answers
I'm tasked to change a user's password on multiple Linux systems (RH v3). I though copying the encrypted password from one Linux /etc/shadow file to another would work but I was wrong.
The long term solution is to establish an openLDAP Directory service, but for now I'm stuck with a manual... (1 Reply)
Discussion started by: benq70
1 Replies
3. Linux
We are currently using a script to copy the same encrypted password between our HP-UX and Solaris servers editing the trusted and shadow files directly. The encrypted password is only 13 characters long on both servers and decrypts the same way. Is there a way to copy this same string to Linux... (5 Replies)
Discussion started by: keelba
5 Replies
4. Shell Programming and Scripting
Hi folks,
What will be the easy way to decrypt encrypted passwords on MySQL table. Googling brought me many suggestions on crypt/decrypt running scripts. Please advise. TIA
Remark:
I think the encrypt function of MySQL uses the Unix crypt command to encrypt
B.R.
satimis (1 Reply)
Discussion started by: satimis
1 Replies
5. UNIX for Advanced & Expert Users
Hi
I wonder whether is possible to generate enrypted passwd for some user and paste it into /etc/shadow file ?
What kind of encryption is used in /etc/shadow file ?
ths for help. (1 Reply)
Discussion started by: presul
1 Replies
6. UNIX for Dummies Questions & Answers
i have an application that uses the encrypted password that's in the /etc/shadow file.
i copied the line for the particular username i was interested it in from shadow file and i pasted it into the password file of the application. the application is nagios.
this application allowed that... (5 Replies)
Discussion started by: SkySmart
5 Replies
7. Shell Programming and Scripting
Hi All,
I am not able to access an oracle table even if the table is present. After initial analysis, found that there is a password warning for the specified oracle user. Can you please help me in ignoring the password expiry and access the oracle table ? However, the log file does not store the... (4 Replies)
Discussion started by: tapan8984
4 Replies
8. Shell Programming and Scripting
How to keep encrypted password in a shell script.?
I have the file which has the following:
a.sh
-----
username=abc
password=abc
I will be using this username and password in another script. But I don't want to reveal the password in the script. How to keep the password... (3 Replies)
Discussion started by: sanvel
3 Replies
9. Cybersecurity
Hello, on my android device my app autosaves my password and it encrypts by TLS
im not politically exposed person, just regular entrepreneur. Should i worry if i loose my phone with TLS encrypted password? Or regular mortals or casual hackers are not able to crack it? (4 Replies)
Discussion started by: postcd
4 Replies
10. Shell Programming and Scripting
Hi,
As a security measure, we need to force all the users to use MD5 encryped passwords. For that we need to list users whose encrypted password is not MD5. I understand all MD5 encrypted passwords start with $1$ and a sample entry in /etc/shadow would be
... (4 Replies)
Discussion started by: magnus29
4 Replies
LEARN ABOUT OPENSOLARIS
evp_sealinit
EVP_SealInit(3openssl) OpenSSL EVP_SealInit(3openssl)
NAME
EVP_SealInit, EVP_SealUpdate, EVP_SealFinal - EVP envelope encryption
SYNOPSIS
#include <openssl/evp.h>
int EVP_SealInit(EVP_CIPHER_CTX *ctx, const EVP_CIPHER *type,
unsigned char **ek, int *ekl, unsigned char *iv,
EVP_PKEY **pubk, int npubk);
int EVP_SealUpdate(EVP_CIPHER_CTX *ctx, unsigned char *out,
int *outl, unsigned char *in, int inl);
int EVP_SealFinal(EVP_CIPHER_CTX *ctx, unsigned char *out,
int *outl);
DESCRIPTION
The EVP envelope routines are a high level interface to envelope encryption. They generate a random key and IV (if required) then "enve-
lope" it by using public key encryption. Data can then be encrypted using this key.
EVP_SealInit() initializes a cipher context ctx for encryption with cipher type using a random secret key and IV. type is normally supplied
by a function such as EVP_des_cbc(). The secret key is encrypted using one or more public keys, this allows the same encrypted data to be
decrypted using any of the corresponding private keys. ek is an array of buffers where the public key encrypted secret key will be written,
each buffer must contain enough room for the corresponding encrypted key: that is ek[i] must have room for EVP_PKEY_size(pubk[i]) bytes.
The actual size of each encrypted secret key is written to the array ekl. pubk is an array of npubk public keys.
The iv parameter is a buffer where the generated IV is written to. It must contain enough room for the corresponding cipher's IV, as deter-
mined by (for example) EVP_CIPHER_iv_length(type).
If the cipher does not require an IV then the iv parameter is ignored and can be NULL.
EVP_SealUpdate() and EVP_SealFinal() have exactly the same properties as the EVP_EncryptUpdate() and EVP_EncryptFinal() routines, as docu-
mented on the EVP_EncryptInit(3) manual page.
RETURN VALUES
EVP_SealInit() returns 0 on error or npubk if successful.
EVP_SealUpdate() and EVP_SealFinal() return 1 for success and 0 for failure.
NOTES
Because a random secret key is generated the random number generator must be seeded before calling EVP_SealInit().
The public key must be RSA because it is the only OpenSSL public key algorithm that supports key transport.
Envelope encryption is the usual method of using public key encryption on large amounts of data, this is because public key encryption is
slow but symmetric encryption is fast. So symmetric encryption is used for bulk encryption and the small random symmetric key used is
transferred using public key encryption.
It is possible to call EVP_SealInit() twice in the same way as EVP_EncryptInit(). The first call should have npubk set to 0 and (after set-
ting any cipher parameters) it should be called again with type set to NULL.
SEE ALSO
evp(3), rand(3), EVP_EncryptInit(3), EVP_OpenInit(3)
HISTORY
EVP_SealFinal() did not return a value before OpenSSL 0.9.7.
OpenSSL-0.9.8 Oct 11 2005 EVP_SealInit(3openssl)