s2/sshenc.sh
1
0
Fork 0
mirror of https://github.com/5im-0n/sshenc.sh.git synced 2025-08-02 19:30:05 +02:00
Code Issues Releases Wiki Activity

openssl 1.1.1 - this introduces not backward compatible changes :(

Browse Source
This commit is contained in:
s2
2019-11-26 16:39:26 +01:00
parent 63ac438831
commit 6de058b2da
2 changed files with 116 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
README.md
View File

@@ -37,5 +37,12 @@ this line fetches the first public key for the github user S2- and encrypts the
sshenc.sh -s ~/.ssh/id_rsa < encrypted.txt
```
## Notes
[OpenSSL 1.1.1](https://www.openssl.org/docs/man1.1.1/man1/openssl-enc.html) introduced a not backwards compatible change: the default digest to create a key from the passphrase changed from md5 to sha-256.
Also, a new `-iter` parameter to explicitly specify a given number of iterations on the password in deriving the encryption key was added.
Before OpenSSL 1.1.1 this option was not available.
Since the new parameters are more secure, `sshenc.sh` changed to adopt them, so since 2019-11-26, files encrypted with a previous version of `sshenc.sh` will not decrypt.
To do so, use the prevous `sshenc.sh` script, located at [https://sshenc.sh/sshenc-pre1.1.1.sh](https://sshenc.sh/sshenc-pre1.1.1.sh).
## License
[MIT](https://opensource.org/licenses/MIT)