Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Make a password protected bash script resist/refuse “bash -x” when the password is given
Top Forums Shell Programming and Scripting Make a password protected bash script resist/refuse “bash -x” when the password is given Post 302878825 by frad on Monday 9th of December 2013 06:42:41 AM
Old 12-09-2013
Make a password protected bash script resist/refuse “bash -x” when the password is given
I want to give my long scripts to customer. The customer must not be able to read the scripts even if he has the password. The following command locks and unlocks the script but the set +x is simply ignored.

The code:

Code:
read -p 'Script: ' S && C=$S.crypt H='eval "$((dd if=$0 bs=1 skip=//|gpg -d)2>/dev/null)"; exit;' && gpg -c<$S|cat >$C <(echo $H|sed s://:$(echo "$H"|wc -c):) - <(chmod +x $C)

I want to give to customer a script that he can run by entering a password. The customer must not be able to see the code via cat/vim/bash -x. To counter the "bash -x" we can use set +x in the beginning of the script but it does not work for the password protected script. we run bash -x script.secure, put the password and we see the commands even if the script starts with set +x
 

10 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

How to make script password protected

Hi All, I want to make my script password protected. i e: if somebody runs my script it should prompt for password. Can somebody help me in to execute the same?? Thanks in Advance :b: (11 Replies)
Discussion started by: achararun
11 Replies

2. OS X (Apple)

Bash script prompt for sudo password?

I'm making a script that will be a double clickable .command file and I need it to prompt for the users admin password. So far I have: if ]; then sudo -p "Please enter your admin password: " date 2>/dev/null 1>&2 if ; then echo "You entered an invalid password... (2 Replies)
Discussion started by: PatGmac
2 Replies

3. Shell Programming and Scripting

How to make files/folders Password protected

Any idea how to make files/folders password protected... I dont want to change the permissions of the files/folders... (1 Reply)
Discussion started by: know d unknown
1 Replies

4. Shell Programming and Scripting

Passing a MySql password from bash script

Hi all, I am running this script on Mandrakelinux release 10.1, 2.6.8.1-12mdksmp #1 SMP I have also installed 'expect' separately. I have created an Rsync script, but before any Rsync command does run, a MySql dump must be done first, and I am battling a bit to pass the MySql password from... (2 Replies)
Discussion started by: codenjanod
2 Replies

5. Shell Programming and Scripting

Best way to hide password in bash script?

Dear folks, The title of my thread says mostly all of what I want to do. Basically I want to auto-ssh to a remote host, and run a program on it (VLC is just an example). I wrote a script which calls xterm and then runs expect on it. The code is as follow #!/bin/bash export PASS="xxxxxxx"... (22 Replies)
Discussion started by: dukevn
22 Replies

6. Shell Programming and Scripting

bash script for password recovery

Hi all, I'm a complete newbie to bash scripting, although I have some experience in programming. The thing is that I have a .dmg file on my mac which I protected with a password, and now I've forgotten it. I remember the first few letters of the password and the characters that represent the... (4 Replies)
Discussion started by: sujay.jauhar
4 Replies

7. Shell Programming and Scripting

Feeding password in bash script

Hello I am doing some test. In a script I have to call a change password routine ( ldap ) which ask confirmation. This can be done from terminal. Is there a way to do something like this : #!/bin/bash # blabla blabla blabla blabla # changing_password_routine user_name... (2 Replies)
Discussion started by: jcdole
2 Replies

8. Shell Programming and Scripting

Masking Password from within a Bash Shell Script

Is there a way to mask the password inside of a script to minimize the impact of a comprimised server? So ssh -o "PasswordAuthentication no" -o "HostbasedAuthentication yes" -l testuser 192.168.3.1 "mysqldump --opt --all-databases -u root -pPassword| gzip" > $backup_dir/mysqldump.gz a... (2 Replies)
Discussion started by: metallica1973
2 Replies

9. Shell Programming and Scripting

Password check in bash script calling on expect

password check in bash script calling on expect Background: I have to copy a file from one server, to over 100 servers in a test environment. once the file is copied, it requires to have the permissions on the file changed/verified. These are all linux servers. most of them have the same... (1 Reply)
Discussion started by: 2legit2quit
1 Replies

10. Shell Programming and Scripting

Bash script for password changes help

I am super new to scripting and I am trying to create a bash script that is interactive that will change other user passwords as well as a few other thing (ie. change SMB pw, see pw expiration,lock/unlock user). I have started it by making it check to see if the username entered is in the... (2 Replies)
Discussion started by: thumbelina
2 Replies

LEARN ABOUT SUSE

gpg-preset-passphrase

GPG-PRESET-PASSPHRASE(1)					 GNU Privacy Guard					  GPG-PRESET-PASSPHRASE(1)

NAME

       gpg-preset-passphrase - Put a passphrase into gpg-agent's cache

SYNOPSIS

       gpg-preset-passphrase [options] [command] cache-id

DESCRIPTION

       The  gpg-preset-passphrase  is a utility to seed the internal cache of a running gpg-agent with passphrases.  It is mainly useful for unat-
       tended machines, where the usual pinentry tool may not be used and the passphrases for the to be used keys are given at machine startup.

       Passphrases set with this utility don't expire unless the --forget option is used to explicitly clear them from the cache --- or  gpg-agent
       is  either  restarted  or  reloaded (by sending a SIGHUP to it).  It is necessary to allow this passphrase presetting by starting gpg-agent
       with the --allow-preset-passphrase.

       gpg-preset-passphrase is invoked this way:

	 gpg-preset-passphrase [options] [command] cacheid

       cacheid is either a 40 character keygrip of hexadecimal characters identifying the key for which the passphrase should be set  or  cleared.
       The keygrip is listed along with the key when running the command: gpgsm --dump-secret-keys.  Alternatively an arbitrary string may be used
       to identify a passphrase; it is suggested that such a string is prefixed with the name of the application (e.g foo:12346).

       One of the following command options must be given:

       --preset
	      Preset a passphrase. This is what you usually will use. gpg-preset-passphrase will then read the passphrase from stdin.

       --forget
	      Flush the passphrase for the given cache ID from the cache.

	      The following additional options may be used:

       -v

       --verbose
	      Output additional information while running.

       -P string

       --passphrase string
	      Instead of reading the passphrase from stdin, use the supplied string as passphrase.  Note that this makes  the  passphrase  visible
	      for other users.

SEE ALSO

       gpg(1), gpgsm(1), gpg-agent(1), scdaemon(1)

       The full documentation for this tool is maintained as a Texinfo manual.	If GnuPG and the info program are properly installed at your site,
       the command

	 info gnupg

       should give you access to the complete manual including a menu structure and an index.

GnuPG 2.0.15							    2010-07-05						  GPG-PRESET-PASSPHRASE(1)
All times are GMT -4. The time now is 09:23 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy