Giter VIP home page Giter VIP logo

ssh_crypt's Introduction

SSH2 (en/de)crypt utility

Version: 1.2
Date: 2015-09-20

Use existing ssh public keys [1] to encrypt files!

[1]If these keys are RSA ones :)

Objectives

This utility is no more than a toy. Rather powerful toy nevertheless. It was written as a proof of concept to show ability to use almost any appropriate public keys to encrypt data.

Sometimes there appear situations, when you have no other alternatives besides coreutils and ssh installed on the host. Well… If you can install in addition openssl, why don't install GnuPG? I don't know, but this script allows encrypt and sign files using only existing ssh keys with openssl as backend.

Usage

ssh_crypt [--help|-h] {--enc|-e}|{--dec|-d} --pub|-p pulic_key \
          --priv|-k private_key [--sign|-s] [--armor|-a] \
          [--verbose|-v] in_filename [out_filename]

Options

--help (or -h) Show the help and exit
--enc (or -e) Encrypt input file using ssh public key
--dec (or -d) Decrypt input file using ssh private key
--pub=public_key
 (or -p public_key) Public key to use to encrypt data or to verify digital signature
--priv=private_key
 (or -k private_key) Private key to use to decrypt data or to digitally sign file
--sign (or -s) Attach digital signature (private key needed)
--armor (or -a) Save encrypted data in ASCII form (by default output file is binary)
--verbose (or -v) Be verbose. To increase verbosity level add more -v options to command line.

Files to use

in_filename
File to encrypt (mandatory)
out_file
File to save encrypted data. Can be omitted.

Notes

  • This script uses openssl as a backend. So only RSA public keys may be used to encrypt file. Though for signing other types of keys go well, such as DSA or ECDSA. But ED25519 SSH2 keys are not compatible with openssl suite.
  • Parameters --enc and --dec are mutual exclusive. If they appear together in the command line, only the first of them will be taken.
  • If the name of out_file is omitted, in encryption mode it will be taken from in_filename with suffix .bin or .asc (depending of --armor option). In decryption mode filename will be restored from saved data or, if the file with the same name exists, suffix .decrypted will be added.

ssh_crypt's People

Contributors

stanclai avatar

Watchers

avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.