-----Original Message-----
From: Werner Koch [mailto:[email protected]] 
Sent: Friday, July 24, 2015 4:24 AM

On Thu, 23 Jul 2015 19:11, [email protected] said:
> This is a snippet of the script I use to decrypt any file coming to me that 
> has my private key (or my companies private key)
>
>   $DFLT gpg_pass2 \
>   | gpg --homedir $homedir --quiet --passphrase-fd 0 --no-tty --skip-verify \
>         --no-permission-warning --no-mdc-warning --batch  \
>         --output "$oname" --decrypt "$x" > /dev/null 2>&1

If you receive arbitrary data you may want to add

  --max-output SUITABLELARGENUMBEROFBYTES

to avoid a DoS using special crafted compression data.


Shalom-Salam,

   Werner
=======================

I'll look into that.  We do IP filtering on the firewall so we do know who is 
getting to our SFTP box (on Aug 3 we will shut down port 21 and standard FTP).  
All who send data to us must sign a business agreement (HIPAA rules).  One such 
does send us encrypted files that approach 25 GB in size -- yikes!!  Thankfully 
that is once a month.


-- 
CONFIDENTIALITY NOTICE: This e-mail message, including any attachments, 
is for the sole use of the intended recipient(s) and may contain 
confidential 
and privileged information. Any unauthorized review, use, disclosure or 
distribution is prohibited. If you are not the intended recipient, please 
contact the sender by reply e-mail and destroy all copies of the original 
message.

_______________________________________________
Gnupg-users mailing list
[email protected]
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Reply via email to