Re: [gentoo-user] Re: [OT] private files
I use kgpg which [I presume] is part of the kwallet system. So on desktop you have handy gui access and remotely because it is based on gnupg you can use text only access over shh for example :- gpg --decrypt -o ./securepass.tar.gz.gpg ./foo.tar.gz hope this helps stu ps. In extracting the file it may well create either tmp files or even the issue of the removal of the clear text file you make with it [ie. rm after use]. So it may not be the most secure way store passwords. I guess it depends upon your paranoia level for me it is good enough. On 20/12/05, Rumen Yotov [EMAIL PROTECTED] wrote: Hi, On (19/12/05 18:58), [EMAIL PROTECTED] wrote: Neil Bothwick [EMAIL PROTECTED] writes: If you use KDE, KWallet can be used to store random information as well as web site passwords etc. Richard Fish [EMAIL PROTECTED] writes: The KDE Wallet system is pretty much ideally suited to storing this kind of data. I wondered what that thing was... I do run kde but for my needs what ever I end up using will have to be easily accessable from console mode or an ssh login too. Am I right in thinking kwallet requires kde to be running? If I were to simply create *.tar.gz or rar archive and then gnupgp encrypt that file, deleting source would that be problematic? What i'm using is a separate encrypted partition made with loop-eas. Just copy the key-file open the partition erase key-file first, do backup or refresh it then close. Could also be a file but there were some drawbacks. If anybody hacks this system they can't open the partition. I can see it would not be terribly handy but at the size of data I'm talking about it could be scripted and be pretty fast when I needed something. I'm thinking the biggest headache would be deleting the source after each visit. There are tools like emacs that can deal with a tar file transparently but then I've introduced another player into the scheme. What else to people have experience with? -- gentoo-user@gentoo.org mailing list HTH.Rumen -- There are 10 types of people in this world: those who understand binary, those who don't --Unknown -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Re: [OT] private files
On Tue, 20 Dec 2005 09:00:06 +, Stuart Howard wrote: I use kgpg which [I presume] is part of the kwallet system. kgpg and kwallet are separate packages. kgpg is a gpg front-end, kwallet provides automatic, secure storage of passwords as was as general data. -- Neil Bothwick The computer is mightier than the pen, the sword, and usually, the programmer. signature.asc Description: PGP signature
Re: [gentoo-user] Re: [OT] private files
On Mon, 19 Dec 2005 18:58:57 -0600, [EMAIL PROTECTED] wrote: Am I right in thinking kwallet requires kde to be running? It does. If I were to simply create *.tar.gz or rar archive and then gnupgp encrypt that file, deleting source would that be problematic? It would work. I can see it would not be terribly handy but at the size of data I'm talking about it could be scripted and be pretty fast when I needed something. I'm thinking the biggest headache would be deleting the source after each visit. How about an encrypted filesystem, either on a small partition or a loop device? -- Neil Bothwick Few women admit their age. Few men act theirs. signature.asc Description: PGP signature
[gentoo-user] Re: [OT] private files
Rumen Yotov [EMAIL PROTECTED] writes: [...] What i'm using is a separate encrypted partition made with loop-eas. Just copy the key-file open the partition erase key-file first, do backup or refresh it then close. Could also be a file but there were some drawbacks. If anybody hacks this system they can't open the partition. This looks like what I'm after thanks [...] Stuart Howard [EMAIL PROTECTED] writes: I use kgpg which [I presume] is part of the kwallet system. So on desktop you have handy gui access and remotely because it is based on gnupg you can use text only access over shh for example :- gpg --decrypt -o ./securepass.tar.gz.gpg ./foo.tar.gz Thanks.. that will be handy for knowing the syntax [...] Neil Bothwick [EMAIL PROTECTED] writes: How about an encrypted filesystem, either on a small partition or a loop device? Yeah, and Rumen has pointed out something that eases that and its in portage ... it was misspelled so anyone else wanting it look for: sys-fs/loop-aes -- gentoo-user@gentoo.org mailing list
[gentoo-user] Re: [OT] private files
Neil Bothwick [EMAIL PROTECTED] writes: If you use KDE, KWallet can be used to store random information as well as web site passwords etc. Richard Fish [EMAIL PROTECTED] writes: The KDE Wallet system is pretty much ideally suited to storing this kind of data. I wondered what that thing was... I do run kde but for my needs what ever I end up using will have to be easily accessable from console mode or an ssh login too. Am I right in thinking kwallet requires kde to be running? If I were to simply create *.tar.gz or rar archive and then gnupgp encrypt that file, deleting source would that be problematic? I can see it would not be terribly handy but at the size of data I'm talking about it could be scripted and be pretty fast when I needed something. I'm thinking the biggest headache would be deleting the source after each visit. There are tools like emacs that can deal with a tar file transparently but then I've introduced another player into the scheme. What else to people have experience with? -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] Re: [OT] private files
Hi, On (19/12/05 18:58), [EMAIL PROTECTED] wrote: Neil Bothwick [EMAIL PROTECTED] writes: If you use KDE, KWallet can be used to store random information as well as web site passwords etc. Richard Fish [EMAIL PROTECTED] writes: The KDE Wallet system is pretty much ideally suited to storing this kind of data. I wondered what that thing was... I do run kde but for my needs what ever I end up using will have to be easily accessable from console mode or an ssh login too. Am I right in thinking kwallet requires kde to be running? If I were to simply create *.tar.gz or rar archive and then gnupgp encrypt that file, deleting source would that be problematic? What i'm using is a separate encrypted partition made with loop-eas. Just copy the key-file open the partition erase key-file first, do backup or refresh it then close. Could also be a file but there were some drawbacks. If anybody hacks this system they can't open the partition. I can see it would not be terribly handy but at the size of data I'm talking about it could be scripted and be pretty fast when I needed something. I'm thinking the biggest headache would be deleting the source after each visit. There are tools like emacs that can deal with a tar file transparently but then I've introduced another player into the scheme. What else to people have experience with? -- gentoo-user@gentoo.org mailing list HTH.Rumen pgpZikScSZqlH.pgp Description: PGP signature
