Re: [TCLUG:23179] keeping your private key secure

[Jason J <jasonj@innominatus.com>]

You could use zip-crypt on your key once or twice before putting it on visi's
server. Then write a little shell scrip that will:
-unzip-crypt the key
-run pine
-delete the unzipped key when pine exits.

But your key would be uncrypted for a short time while you read your mail.

Does visi let you install binaries like zipcrypt or bcrypt in your directory?



Timothy Wilson wrote:

> Good morning,
>
> Because I read my email from a number of different locations and I try to
> avoid sending my password in the clear, I've been opening an ssh session to
> Visi and reading my mail with pine.
>
> I'd rather not keep my GnuPG private key on Visi's machine, but I don't see
> what alternative I've got if I want to read encrypted emails. (I haven't
> even checked if Visi's version of pine supports GnuPG/PGP.)
>
> In general, what's a moderately paranoid person to do when it comes to
> keeping his private key private?
>
> -Tim
>
> --
> Tim Wilson      | Visit Sibley online:         | Check out:
> Henry Sibley HS | http://www.isd197.k12.mn.us/ | http://www.zope.org/
> W. St. Paul, MN |                              | http://slashdot.org/
> wilson@visi.com |   <dtml-var pithy_quote>     | http://linux.com/
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: tclug-list-unsubscribe@mn-linux.org
> For additional commands, e-mail: tclug-list-help@mn-linux.org