s2/sshenc.sh
1
0
Fork 0
mirror of https://github.com/5im-0n/sshenc.sh.git synced 2025-08-02 11:20:05 +02:00
Code Issues Releases Wiki Activity

use pbkdf2 since it is available in new versions of openssl

Browse Source
This commit is contained in:
s2
2019-11-25 16:28:35 +01:00
parent 61c63ef70e
commit 63ac438831
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
sshenc.sh
View File

@@ -66,7 +66,7 @@ if [[ "${#public_key[@]}" > 0 ]]; then
done done
echo "-- /keys" echo "-- /keys"
if cat | openssl enc -aes-256-cbc -salt -pass file:"$temp_file_key" > "$temp_file"; then if cat | openssl enc -aes-256-cbc -pbkdf2 -iter 100000 -salt -pass file:"$temp_file_key" > "$temp_file"; then
openssl base64 -A < "$temp_file" openssl base64 -A < "$temp_file"
fi fi
@@ -91,7 +91,7 @@ elif [[ -e "$private_key" ]]; then
for key in "${keys[@]}" for key in "${keys[@]}"
do do
if ((echo "$key" | openssl base64 -d -A | openssl rsautl -decrypt -ssl -inkey "$private_key" > "$temp_file") > /dev/null 2>&1); then if ((echo "$key" | openssl base64 -d -A | openssl rsautl -decrypt -ssl -inkey "$private_key" > "$temp_file") > /dev/null 2>&1); then
if echo "$cypher" | openssl base64 -d -A | openssl aes-256-cbc -d -pass file:"$temp_file"; then if echo "$cypher" | openssl base64 -d -A | openssl aes-256-cbc -pbkdf2 -iter 100000 -d -pass file:"$temp_file"; then
decrypted=true decrypted=true
fi fi
fi fi