mirror of
https://github.com/5im-0n/sshenc.sh.git
synced 2025-08-02 19:30:05 +02:00
update the README.md with the new functionality
This commit is contained in:
12
README.md
12
README.md
@@ -28,9 +28,9 @@ sshenc.sh -p ~/.ssh/id_rsa.pub -p id_rsa-alice.pub -p id_rsa-bob.pub < plain-tex
|
||||
|
||||
### encrypt a file using the public key of a github user
|
||||
```
|
||||
sshenc.sh -p <(curl -sf "https://github.com/S2-.keys" | grep ssh-rsa | tail -n1) < plain-text-file.txt
|
||||
sshenc.sh -g S2- < plain-text-file.txt
|
||||
```
|
||||
this line fetches the first public key for the github user S2- and encrypts the file plain-text-file.txt using this key.
|
||||
this line fetches the public keys for the github user S2- and encrypts the file plain-text-file.txt using its key(s).
|
||||
|
||||
### decrypt a file
|
||||
```
|
||||
@@ -38,10 +38,10 @@ sshenc.sh -s ~/.ssh/id_rsa < encrypted.txt
|
||||
```
|
||||
|
||||
## Notes
|
||||
[OpenSSL 1.1.1](https://www.openssl.org/docs/man1.1.1/man1/openssl-enc.html) introduced a not backwards compatible change: the default digest to create a key from the passphrase changed from md5 to sha-256.
|
||||
Also, a new `-iter` parameter to explicitly specify a given number of iterations on the password in deriving the encryption key was added.
|
||||
Before OpenSSL 1.1.1 this option was not available.
|
||||
Since the new parameters are more secure, `sshenc.sh` changed to adopt them, so since 2019-11-26, files encrypted with a previous version of `sshenc.sh` will not decrypt.
|
||||
[OpenSSL 1.1.1](https://www.openssl.org/docs/man1.1.1/man1/openssl-enc.html) introduced a not backwards compatible change: the default digest to create a key from the passphrase changed from md5 to sha-256.
|
||||
Also, a new `-iter` parameter to explicitly specify a given number of iterations on the password in deriving the encryption key was added.
|
||||
Before OpenSSL 1.1.1 this option was not available.
|
||||
Since the new parameters are more secure, `sshenc.sh` changed to adopt them, so since 2019-11-26, files encrypted with a previous version of `sshenc.sh` will not decrypt.
|
||||
To do so, use the prevous `sshenc.sh` script, located at [https://sshenc.sh/sshenc-pre1.1.1.sh](https://sshenc.sh/sshenc-pre1.1.1.sh).
|
||||
|
||||
## License
|
||||
|
Reference in New Issue
Block a user