gpg save passphrase

**DDD22** · 07-02-2022

I have installed manually gpg version 2.2.27 ,download it from https://www.gnupg.org/ftp/gcrypt/gnu...2.2.27.tar.bz2
followed the steps to install all the libraries , used ./configure && make.
Generated keys with gpg --gen-key
Everything works fine.
I have setup up the passphrase .
When i use it on a file like :

gpg -d file.gpg it opens the next popup .

lqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqq qqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqk
x Please enter the passphrase to unlock the secret key for the OpenPGP certificate: x
x "john smith (admin support) <[email protected]>" x
x 2048-bit RSA key, ID 4DDF05FC, x
x created 2022-07-02 (main key ID 1274E5D3). x
x x
x x
x Passphrase **********________________________________________ _____________________ x
x x
x <OK> <Cancel> x
mqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqq qqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqj

After i type in the passphrase i want to save the passphrase in a file for further testing.
Can`t seem to find how passphrase is send from the popup.
From the documentation :
g10/passphrase.c
Passphrase handling code
g10/gpg.c
Main module with option parsing and all the stuff you have to do on startup. Also has the exit handler and some helper functions.

**Salem** · 07-02-2022

Why don't you pass the passphrase on the command line to begin with, if you want the passphrase in a file.

--passphrase-file file
Read the passphrase from file file. Only the first line will be read from file file. This can only be used if only one passphrase is supplied. Obviously, a
passphrase stored in a file is of questionable security if other users can read this file. Don't use this option if you can avoid it.

Note that since Version 2.0 this passphrase is only used if the option --batch has also been given. Since Version 2.1 the --pinentry-mode also needs to be set to
loopback.

--passphrase string
Use string as the passphrase. This can only be used if only one passphrase is supplied. Obviously, this is of very questionable security on a multi-user system.
Don't use this option if you can avoid it.

**DDD22** · 07-03-2022

Thanks for the quick reply Salem.
I know these options , but for multi-user system is not that good .I wanted to know how the passphrase is passed from the popup after i press <Ok> .
From documentation : g10/passphrase.c
Passphrase handling code
But can`t seem to find out how the passphrase it`s processed from the popup to passphrase.c .
Thanks in advance.

**Salem** · 07-03-2022

> but for multi-user system is not that good
Sorry, this just seems like an attempt to steal everyone else's credentials.

> After i type in the passphrase i want to save the passphrase in a file for further testing.
Or your incompetence with the resulting file will just compromise everyone else's security.

"for testing" with your own keys, the existing command line options are more than sufficient.

Otherwise, it's just got red flags all over it.

**DDD22** · 07-03-2022

Yes you are right Salem , it`s better with --passphrase-file.
Thanks for the reply.

Thread: gpg save passphrase

Thread Tools

Search Thread

Display

gpg save passphrase

Similar Threads

GDIPLUS::Image::Save(IStream): how can i save an animated gif to istream?

Passphrase-Protecting a File

Save vs Save As.... OPENFILENAME flags

save webpage? some save some not

Tags for this Thread