05-07-2013
@hanson44 - Thanks, I'll have to check into that, I had completely forgotten about ssh-keygen, been in the Windows world for too long.
@fpmurphy - Thanks for the pointer to vCLI, it looks like that may be just the ticket, once I figure out how to use the credstore.
9 More Discussions You Might Find Interesting
1. Shell Programming and Scripting
Accidentally, I encrypted a file while saving it in vi editor.
While saving I used :X and when asked for encryption key, I simply pressed ENTER key without any input.
I searched the forum, but unfortunately didn't get the proper solution. In one of the threads it asked to visit a particular... (1 Reply)
Discussion started by: rkkiran
1 Replies
2. Shell Programming and Scripting
Accidentally, I encrypted a file while saving it in vi editor.
While saving I used :X and when asked for encryption key, I simply pressed ENTER key without any input.
Now, I want to decrypt the file.
I searched the forum, but unfortunately didn't get the proper solution. In one of the... (1 Reply)
Discussion started by: rkkiran
1 Replies
3. Shell Programming and Scripting
how do you go about doing this i have a shell script here below but i am not to sure on the process of decrytpting the file.
#!/bin/csh
#
#
set am = abcdefghijklm'
set am = ABCDEFGHIJKLM'
set nz = nopqrstuvwxyz'
set NZ = NOPQRSTUVWXYZ'
cat $argv | tr $am $AM | tr $NZ $nz | tr $nz $am... (1 Reply)
Discussion started by: master_6ez
1 Replies
4. HP-UX
Hi All
We have got a HUGE process of securing our infrastructure(primarily the database)
We basically establish connection to oracle database from our UNIX shell scripts
when we do ps -ef | grep sqlplus
it blurts out all the credentials as output.
sqplus username/password@server
... (1 Reply)
Discussion started by: b_sri
1 Replies
5. Shell Programming and Scripting
Dear Friends,
I want to decrypt 2 different file types in a folder (ZIP files and GPG files).
Each file type need different decryption syntex.
Hence, the script should identify file type and should act accordingly ignoring file name case i.e. upper or lower case.
Also, the extention can be... (6 Replies)
Discussion started by: anushree.a
6 Replies
6. UNIX for Advanced & Expert Users
I've been using various versions of UNIX and Linux since 1993, and I've never run across one that showed your password as you type it in when you log in, or one that stored passwords in plain text rather than encrypted. I'm writing a script for work for a security audit, and two of the... (5 Replies)
Discussion started by: Anne Neville
5 Replies
7. Shell Programming and Scripting
Hello,
I am a newbie in Shell scripting. At the moment, I have a program written in C++ which gives an output file in text format. I would like to write a shell program which can take that output file and encrypt it and later if needed I want to decrypt it.
Could someone please help or... (3 Replies)
Discussion started by: Tanin
3 Replies
8. UNIX for Advanced & Expert Users
Hello All,
Is there a way to determine how many public keys are embedded or used to encrypt in a GPG file with out decrypting the actual encrypted file. I know i can see the keys & email id's used when we decrypt it, but curious to find a command if any to know with out decrypting the actual file... (2 Replies)
Discussion started by: Ariean
2 Replies
9. High Performance Computing
Hi,
i've got a qusetion regarding interconnect of compute nodes.
In our company we are running a Simulation Cluster which is administrated by the Simulation department. Now our central IT requires to encrypt the interconnect of the compute nodes.
Does anybody in that business encrypt... (3 Replies)
Discussion started by: fiberkill
3 Replies
MODULI(5) BSD File Formats Manual MODULI(5)
NAME
moduli -- Diffie-Hellman moduli
DESCRIPTION
The /etc/ssh/moduli file contains prime numbers and generators for use by sshd(8) in the Diffie-Hellman Group Exchange key exchange method.
New moduli may be generated with ssh-keygen(1) using a two-step process. An initial candidate generation pass, using ssh-keygen -G, calcu-
lates numbers that are likely to be useful. A second primality testing pass, using ssh-keygen -T, provides a high degree of assurance that
the numbers are prime and are safe for use in Diffie-Hellman operations by sshd(8). This moduli format is used as the output from each pass.
The file consists of newline-separated records, one per modulus, containing seven space-separated fields. These fields are as follows:
timestamp The time that the modulus was last processed as YYYYMMDDHHMMSS.
type Decimal number specifying the internal structure of the prime modulus. Supported types are:
0 Unknown, not tested.
2 "Safe" prime; (p-1)/2 is also prime.
4 Sophie Germain; 2p+1 is also prime.
Moduli candidates initially produced by ssh-keygen(1) are Sophie Germain primes (type 4). Further primality testing with
ssh-keygen(1) produces safe prime moduli (type 2) that are ready for use in sshd(8). Other types are not used by OpenSSH.
tests Decimal number indicating the type of primality tests that the number has been subjected to represented as a bitmask of
the following values:
0x00 Not tested.
0x01 Composite number - not prime.
0x02 Sieve of Eratosthenes.
0x04 Probabilistic Miller-Rabin primality tests.
The ssh-keygen(1) moduli candidate generation uses the Sieve of Eratosthenes (flag 0x02). Subsequent ssh-keygen(1) pri-
mality tests are Miller-Rabin tests (flag 0x04).
trials Decimal number indicating the number of primality trials that have been performed on the modulus.
size Decimal number indicating the size of the prime in bits.
generator The recommended generator for use with this modulus (hexadecimal).
modulus The modulus itself in hexadecimal.
When performing Diffie-Hellman Group Exchange, sshd(8) first estimates the size of the modulus required to produce enough Diffie-Hellman out-
put to sufficiently key the selected symmetric cipher. sshd(8) then randomly selects a modulus from /etc/ssh/moduli that best meets the size
requirement.
SEE ALSO
ssh-keygen(1), sshd(8)
STANDARDS
M. Friedl, N. Provos, and W. Simpson, Diffie-Hellman Group Exchange for the Secure Shell (SSH) Transport Layer Protocol, RFC 4419, March 2006
2006.
BSD
September 26, 2012 BSD