Re: recording and retrieving "secrets" into gpg files
Hi Arbiel, Arbiel (gmx): > Hi Stephan > > The "Bash scripting" material, which I began reading, gave me some > valuable informations and I will go on reading it. > > On the other hand, I did not understand the aim of the material > concerning bash for gpg, as it deals with issues which I am quite > unaware of. Maybe, when I get more confident in gpg concepts, will I > understand its purpose. > > In fact, I wish to record "secrets" in gnome-keyrings, as seahorse does, > and I am looking for tutorials which explain how to do so with bash > scripts, which are the only "programs" I am able to write. Ah, ok, you were still with that, so it was sort of misunderstanding. For me it wasn't quite clear whether your new question really had anything to do with your old (storing secrets in gnome-keyrings), or whether (what I thought at last) it was a new one and generic. So I gave you two links, one for bash scripting in general, and the one related to gpg (as an example) for bash scripting concerning gpg. No, that file verification bash scripting hasn't anything to do with storing secrets in keyrings. I looked again but haven't found anything specific related to your question. Cheers, Stephan > Le 30/09/2016 à 17:30, Stephan Beck a écrit : >> Hi Arbiel, >> >> Arbiel (gmx): >>> Hi >>> >>> Thank you Andrew. >>> >>> In the material I've been ready lately, all examples are written in a >>> programming language and I only have abilities in bash scripting. >>> >>> Can somebody, please, direct me toward a url where they provide bash >>> scripting examples. >> [...] >> Bash scripting in general? >> http://bash-hackers.org >> >> related to gpg? For instance, >> https://github.com/Whonix/gpg-bash-lib >> >> Cheers, >> >> Stephan >> >> ___ >> Gnupg-users mailing list >> Gnupg-users@gnupg.org >> http://lists.gnupg.org/mailman/listinfo/gnupg-users >> > 0x4218732B.asc Description: application/pgp-keys signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: recording and retrieving "secrets" into gpg files
On Fri, Sep 30, 2016 at 03:56:08PM +0200, Arbiel (gmx) wrote: Can somebody, please, direct me toward a url where they provide bash scripting examples. Take a look at https://www.passwordstore.org/ which is written in bash and stores secrets with gnupg. --jc -- Doctorow's Law: Anytime someone puts a lock on something you own, against your wishes, and doesn't give you the key, they're not doing it for your benefit. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: recording and retrieving "secrets" into gpg files
Hi Damien It's exactly what I was looking for. Thank you a lot. Arbiel Le 02/10/2016 à 09:52, Damien Goutte-Gattat a écrit : > On 10/02/2016 12:10 AM, Arbiel (gmx) wrote: >> In fact, I wish to record "secrets" in gnome-keyrings, as seahorse does, >> and I am looking for tutorials which explain how to do so with bash >> scripts, which are the only "programs" I am able to write. > > Then you might have a look at the secret-tool program (in the > libsecret-tools package), which is a command-line client (so, it should > be scriptable with bash) to the secret service [1]. > > (The "secret service" is the service responsible for managing the > keyrings. Seahorse is only a client for that service, it does not > manipulate the keyring itself.) > > E.g., to store a secret into the default keyring: > > $ echo -n "mysecret" | secret-tool store --label="A secret" \ > hostname www.example.com > > where "mysecret" is the secret to store, "A secret" is the name that > will be displayed in Seahorse, and "hostname www.example.com" is a key > value pair that you can later use to search for this secret. > > To retrieve this secret: > > $ secret-tool search hostname www.example.com > > You will not have to use GnuPG. In fact, as far as I know GnuPG is not > involved anywhere --- the secret service daemon encrypts the keyring > itself, it does not use GnuPG for that. > > Hope that helps, > > Damien > > > [1] https://specifications.freedesktop.org/secret-service/ > signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: recording and retrieving "secrets" into gpg files
On 10/02/2016 12:10 AM, Arbiel (gmx) wrote: In fact, I wish to record "secrets" in gnome-keyrings, as seahorse does, and I am looking for tutorials which explain how to do so with bash scripts, which are the only "programs" I am able to write. Then you might have a look at the secret-tool program (in the libsecret-tools package), which is a command-line client (so, it should be scriptable with bash) to the secret service [1]. (The "secret service" is the service responsible for managing the keyrings. Seahorse is only a client for that service, it does not manipulate the keyring itself.) E.g., to store a secret into the default keyring: $ echo -n "mysecret" | secret-tool store --label="A secret" \ hostname www.example.com where "mysecret" is the secret to store, "A secret" is the name that will be displayed in Seahorse, and "hostname www.example.com" is a key value pair that you can later use to search for this secret. To retrieve this secret: $ secret-tool search hostname www.example.com You will not have to use GnuPG. In fact, as far as I know GnuPG is not involved anywhere --- the secret service daemon encrypts the keyring itself, it does not use GnuPG for that. Hope that helps, Damien [1] https://specifications.freedesktop.org/secret-service/ signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: recording and retrieving "secrets" into gpg files
Hi Stephan The "Bash scripting" material, which I began reading, gave me some valuable informations and I will go on reading it. On the other hand, I did not understand the aim of the material concerning bash for gpg, as it deals with issues which I am quite unaware of. Maybe, when I get more confident in gpg concepts, will I understand its purpose. In fact, I wish to record "secrets" in gnome-keyrings, as seahorse does, and I am looking for tutorials which explain how to do so with bash scripts, which are the only "programs" I am able to write. Cheers Arbiel Le 30/09/2016 à 17:30, Stephan Beck a écrit : > Hi Arbiel, > > Arbiel (gmx): >> Hi >> >> Thank you Andrew. >> >> In the material I've been ready lately, all examples are written in a >> programming language and I only have abilities in bash scripting. >> >> Can somebody, please, direct me toward a url where they provide bash >> scripting examples. > [...] > Bash scripting in general? > http://bash-hackers.org > > related to gpg? For instance, > https://github.com/Whonix/gpg-bash-lib > > Cheers, > > Stephan > > ___ > Gnupg-users mailing list > Gnupg-users@gnupg.org > http://lists.gnupg.org/mailman/listinfo/gnupg-users > signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: recording and retrieving "secrets" into gpg files
Hi Arbiel, Arbiel (gmx): > Hi > > Thank you Andrew. > > In the material I've been ready lately, all examples are written in a > programming language and I only have abilities in bash scripting. > > Can somebody, please, direct me toward a url where they provide bash > scripting examples. [...] Bash scripting in general? http://bash-hackers.org related to gpg? For instance, https://github.com/Whonix/gpg-bash-lib Cheers, Stephan ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: recording and retrieving "secrets" into gpg files
Hi Thank you Andrew. In the material I've been ready lately, all examples are written in a programming language and I only have abilities in bash scripting. Can somebody, please, direct me toward a url where they provide bash scripting examples. Arbiel Le 28/09/2016 à 15:25, Andrew Gallagher a écrit : > On 28/09/16 12:44, Arbiel (gmx) wrote: >> Hi >> >> Seahorse (distributed within Ubuntu) allows for the storing and >> retrieving of "secrets", as passwords, into what I understand to be >> gpg keyrings, or at the least, files. > > Seahorse stores passwords in the Gnome keyring, which is not related to > PGP -- it uses symmetric encryption based on an iterative password > hash. Try the docs for "gnome-keyring"? > > A > > > > ___ > Gnupg-users mailing list > Gnupg-users@gnupg.org > http://lists.gnupg.org/mailman/listinfo/gnupg-users > signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: recording and retrieving "secrets" into gpg files
On 28/09/16 12:44, Arbiel (gmx) wrote: > Hi > > Seahorse (distributed within Ubuntu) allows for the storing and > retrieving of "secrets", as passwords, into what I understand to be > gpg keyrings, or at the least, files. Seahorse stores passwords in the Gnome keyring, which is not related to PGP -- it uses symmetric encryption based on an iterative password hash. Try the docs for "gnome-keyring"? A signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users