Discover Top Posts Tagged with #gnupg

Popular Recent

I recently made two simple shell one-liners to practice memorizing and checking my passphrases - without ever storing them. Commented versions (note that this is using GnuPG 1 - you have to adjust the commands for GnuPG 2):

pwhash()

{

‍ ‍ ‍ # Password Hash

‍ ‍ ‍ #

‍ ‍ ‍ # Uses GnuPG to encrypt an empty file

‍ ‍ ‍ # with the password, thus storing a

‍ ‍ ‍ # secure salted hash of the password.

‍ ‍ ‍ : | gpg -‍-symmetric -‍-cipher-algo AES256 >"$1"

‍ ‍ ‍ # `:` is the no-op shell command,

‍ ‍ ‍ # and thus the pipe reads empty.

}

pwcheck()

{

‍ ‍ ‍ # Password Check

‍ ‍ ‍ #

‍ ‍ ‍ # Tries to use GnuPG to decrypt a given

‍ ‍ ‍ # file with the password, which fails

‍ ‍ ‍ # unless the password is correct.

‍ ‍ ‍ gpg -‍-decrypt -‍-quiet <"$1"

}

So as an example of usage, I might do

pwhash ~/memory/tumblr.com

then type my Tumblr password twice, as you'd expect from any proper password input where the correctness upon initial storage matters, and then when I want to practice or check it, I would do

pwcheck ~/memory/tumblr.com

You can of course use this for memorization of any sensitive information, not just passphrases. Pairs well with any automatic file synchronization or cloud storage solution. I'd like to connect this to a spaced repetition system somehow, but my forgetting sense is good enough now that I can do without.

#software #gnupg #bourne shell #forgetting sense #pwhash pwcheck

Antes de la Arquitectura del Caos, toca desinfectar. En el LAB 07 aplicamos el Protocolo Fantasma: cifrado GnuPG, tuneles SSH y borrado forense real. Si no sobreescribes el disco, tu rastro sigue vivo. Hoy limpiamos el nodo. #cyberseguridad #privacidad #criptografia #hackingetico #seguridadigital

#amor #BleachBit #ciberseguridad #forense #GnuPG #metadatos #Privacidad #SSH

GPG waiting for lock (held by $pid) 问题的解决方法

tl; dr: gpgconf -K all

#gnupg #linux

Linux GPG Agent Log File Set For Debug 2024_06_02_07:17:22

#youtube #linux #gnupg #log #opensource

Well, we all use this tool1 somehow knowingly or unknowingly. Sometimes directly and other times bind with other tools. But this tool is such a present in our armory to get the thing going daily on…

#linux #gnupg #security #opensource

PHP Startup: Unable to load dynamic library gnupg

Ähnlich wie beim vorherigen Fehler hab ich Probleme mit dem Installieren der Library gnupg. Aber auch hier ist es eine einfache Lösung. Das Auführen eines Commands führt zu folgendem Fehler: PHP Warning: PHP Startup: Unable to load dynamic library '/opt/plesk/php/8.1/lib/php/modules/gnupg.so' (tried: /opt/plesk/php/8.1/lib/php/modules/gnupg.so (/opt/plesk/php/8.1/lib/php/modules/gnupg.so:…

View On WordPress

#Debian #Gnupg #Library #php #Plesk

كيفية تشفير الملفات الحساسة باستخدام GnuPG على Linux

في الوقت الحاضر ، أصبحت الأخبار التي تدور حول القرصنة وبرامج الفدية واختراق البيانات شائعة جدًا ومُثيرة للقلق أيضًا. لذلك ، من المهم توخي الحذر الشديد في حماية الملفات الشخصية والبيانات الحساسة. في نظام Linux ، لديك GnuPG ، وهي أداة تشفير بسيطة وشاملة يُمكنك استخدامها لتأمين البيانات المُهمة على نظامك بشكل سلس. تحقق من كيفية حماية الملفات والمجلدات بكلمة سر على نظام Linux. Read the full article

#GnuPG

My `pwhash` and `pwcheck` approach, combined with using passwords generated by `pwqgen` from Openwall's `passwdqc`, empowers a holy grail of password memorization assistance for me: recovering a password that I almost remember, but have forgotten just a little bit of.

Usually, when I "forget" a password, I remember almost all of it. Back when I did password phrases, I might forget the exact word order or choice or punctuation, but I would remember most of it. With `pwqgen` passwords, I might at worst forget one of the three words.

So let's say I have a password like... (runs `pwqgen`): spear9rome_Clap.

That's 12 bits of entropy for each word out of a word list of 4096 words, 1 for whether each word starts with a capital letter or not, and I think 4 for each special character out of a list of 16.

Now let's say I forget one word. I only need to try 4096 combinations, and I can try them locally, against my securely generated and stored "hash" of my password. Any reasonably secure remote system would make that impossible due to lock outs or rate limiting. But even on phone hardware from ten years ago, I can have a script check all 4096 possibilities within a few minutes.

Of course, I only have it this easy because I remember most of my password. Someone else trying to crack my password would have to try all 47 bits of entropy instead of my 12 bits. So it would take them... years? decades? I don't know exactly, but long enough that I'm not too worried. That's assuming they get access to my password "hash" files that I use for this purpose. If I wanted to be pretty safe, I could keep them all inside one big encrypted file or otherwise secure them all with an additional longer master passphrase - in other words, I could have security strictly greater than a regular password manager, by doing every security measure that password managers do on top of my current setup.

#software #pwhash pwcheck #gnupg #passwdqc #pwqgen

pwhash()

{

‍ ‍ ‍ # Password Hash

‍ ‍ ‍ #

‍ ‍ ‍ # Uses GnuPG to encrypt an empty file

‍ ‍ ‍ # with the password, thus storing a

‍ ‍ ‍ # secure salted hash of the password.

‍ ‍ ‍ : | gpg -‍-symmetric -‍-cipher-algo AES256 >"$1"

‍ ‍ ‍ # `:` is the no-op shell command,

‍ ‍ ‍ # and thus the pipe reads empty.

}

pwcheck()

{

‍ ‍ ‍ # Password Check

‍ ‍ ‍ #

‍ ‍ ‍ # Tries to use GnuPG to decrypt a given

‍ ‍ ‍ # file with the password, which fails

‍ ‍ ‍ # unless the password is correct.

‍ ‍ ‍ gpg -‍-decrypt -‍-quiet <"$1"

}

So as an example of usage, I might do

pwhash ~/memory/tumblr.com

then type my Tumblr password twice, as you'd expect from any proper password input where the correctness upon initial storage matters, and then when I want to practice or check it, I would do

pwcheck ~/memory/tumblr.com

#software #gnupg #bourne shell #forgetting sense #pwhash pwcheck

#gnupg

Trending Tags

Recently Viewed Tags

#gnupg