Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I need to encrypt a small file received from an HTML form through a CGI routine. This file needs to be converted back to plain text later (HASH not suitable).
The main problem I face is to have the pass phrase or password automatically provided when requested through stdin. The CGI routines are written in assembly, I only have a basic knowledge of C and PHP and no knowledge of Perl.
Can anyone suggest how to proceed? Point to suitable links? Give a hint?
You would do well to study the features of a full-featured encryption package such as openssl, which should be readily available now on your system and for which interfaces exist in both php and perl.
Key-management, authentication, spoofing-prevention, forgery-prevention and so on are all important issues, and all of them have been ably handled. You won't do any better "on your own."
Thanks to sundialsvcs.
I am probably expecting it to be easier than possible. Seen from your perspective, I should first determine what I need to learn for my needs: OpenSSL or Gnupg or whatever. I'm doing this as a volunteer for a Not-For-Profit and will only learn what is absolutely necessary to get it going, then the pros can take over when finance permits.
Perhaps you can advise what package to learn and use when you consider that the encryption/decryption mentioned above is all I need.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.