Encrypting a shell script

Im looking for a FREE way to encrypt a shell script so that it cant be read but will still be able to be executed. Ive tried shc but i get an error:
 shc -f scriptname.sh
./scriptname.sh.x

./scriptname.sh.x has expired
Please contact your provider
linuxpigAsked:
Who is Participating?
 
unSpawnConnect With a Mentor Commented:
The download page is what I posted in my first comment. If I'm not mistaken the tarball comes with a ready-to-run binary "shc". Delete it, then run 'make clean && make'. The example command to verify it runs OK I have posted in my second comment.
0
 
unSpawnCommented:
The "has expired. Please contact your provider." informational message just means an an expiration date was set and says nothing about the License of Shc, the generic shell script compiler (http://www.datsi.fi.upm.es/~frosal/). (Please note obfuscating a shell script does not keep users with sufficient access rights from retrieving the password/passphrase anyway.)
0
 
gheistCommented:
Binary is more protected - it does not need read access for execution, but anyway - trust models serve better than storing passwords.
0
Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

 
linuxpigAuthor Commented:
Well, its not passwords in the script im looking to protect at this time, although for furture reference i may need that. But Unspawn, i received that message on a script i wrote, right after i downloaded the shc gz file, untarred it, ran make, make install and then ran shc -f script.sh. I also tried shc -r -f script.sh and shc -r -T -f script.sh.
So i wondered if there was something wrong with the gz file i downloaded, but it did this after re-downloading the gz file. So i ask if there is another way to do this, encrypting shell scripts, or if there is something im doing wrong with shc.
Thanks you!
0
 
ai_ja_naiCommented:
>encrypt a shell script so that it cant be read but will still be able to be executed
Why don't you just get rid of read and write permissions for everybody?

chmod go-rw shellscript.sh
0
 
gheistCommented:
read permission is essential for executing shell script. also it cannot have suid bit.

have a look at sudo option - a protected user dir containing unsafe scripts, and users allowed only to call scripts, not read.
0
 
linuxpigAuthor Commented:
Permission and sudo wont work here as this script will be used in other servers in the future, so an actual encryption will have to work. As i have said, shc look like it may be the solution but im having issues with it.
 
So if someone know how to resolve it or knows of another way, please let me know.
0
 
gheistCommented:
Trust scheme like Kerberos.
"encrypted" which decrypts in memory image is piece of cake to snoop.
0
 
unSpawnCommented:
>So i wondered if there was something wrong with the gz file i downloaded
Probably something wrong with how you executed it. It works as advertised: 'echo -en '#!/bin/sh\necho hello world!\nexit 0\n' > match && ./shc -v -f match -e 01/12/2010 && ./match.x'.
0
 
linuxpigAuthor Commented:
Can you give me the steps on how/where you downloaded it, untarred it and then executed it, this way i can make sure the instructions im using on the internet arent faulty
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.