n00b0101
asked on
Shell script not picking up password file...
Running the below shell script seems to ignore the password file I'm feeding it. I'm continually prompted for it. If I enter it, the rest of the script goes without a hitch, but as I'm running it via cron, I really need to get it to read from the file... Any suggestions?
#!/bin/sh
p=$(<password.txt)
set -- $p
pass_phrase=$1
destination="/var/www/d"
cd /var/sl/
for FILE in *.pgp;
do
FILENAME=${FILE%.pgp}
gpg --passphrase "$pass_phrase" --output "$destination/$FILENAME" --decrypt "$FILE"
rm -f $FILE
done
And, what do you mean by feeding?
The way the script is set up now it is required that the password.txt is placed in the same folder as script. If you want to specify the location, you need to give a path as an argument, or change '<password.txt' to '/<full>/<path>/<to>/passw
The way the script is set up now it is required that the password.txt is placed in the same folder as script. If you want to specify the location, you need to give a path as an argument, or change '<password.txt' to '/<full>/<path>/<to>/passw
... what do you get with "echo $p" inserted after line 2 and "echo $1" inserted after line 3?
ASKER
Well, the password is the only thing in the file. You open it up, and the first character of the first line is the first character of the password.... I tried specifying the full path as shown below, but got this:
./pgp.sh: 2: /var/sl/password.txt: Permission denied
gpg: can't open `*.pgp'
gpg: decrypt_message failed: file open error
Checking permissions yields this:
-rw-r--r-- 1 admin admin 17 2010-03-27 15:23 password.txt
-rwxr-xr-x 1 admin admin 268 2010-04-28 06:43 pgp.sh
./pgp.sh: 2: /var/sl/password.txt: Permission denied
gpg: can't open `*.pgp'
gpg: decrypt_message failed: file open error
Checking permissions yields this:
-rw-r--r-- 1 admin admin 17 2010-03-27 15:23 password.txt
-rwxr-xr-x 1 admin admin 268 2010-04-28 06:43 pgp.sh
#!/bin/sh
p=$("/var/sl/password.txt")
set -- $p
pass_phrase=$1
destination="/var/www/decrypted"
cd /var/sl/
for FILE in *.pgp;
do
FILENAME=${FILE%.pgp}
gpg --passphrase "$pass_phrase" --output "$destination/$FILENAME" --decrypt "$FILE"
rm -f $FILE
done
ASKER
(Oh, and yes, I changed the directory from d to decrypted)
OK,
you want to fill the variable "p" with the contents of "password.txt", so you must of course use the redirector "<", as in your original question -
p=$(<"/var/sl/password.txt")
btw. you can shorten this all to
set -- $(<"/var/sl/password.txt")
without using the intermediate variable "p".
If the password is indeed the only thing in password.txt (one word, without spaces!), you could even do
pass_phrase=$(<"/var/sl/pa
With your script as posted, the *.pgp files must be in /var/sl, else the whole thing will not work. In other words, in your script "cd" to the directory actually containing the *.pgp files (line 6) before proceeding.
Done this, the script should work!
wmp
you want to fill the variable "p" with the contents of "password.txt", so you must of course use the redirector "<", as in your original question -
p=$(<"/var/sl/password.txt")
btw. you can shorten this all to
set -- $(<"/var/sl/password.txt")
without using the intermediate variable "p".
If the password is indeed the only thing in password.txt (one word, without spaces!), you could even do
pass_phrase=$(<"/var/sl/pa
With your script as posted, the *.pgp files must be in /var/sl, else the whole thing will not work. In other words, in your script "cd" to the directory actually containing the *.pgp files (line 6) before proceeding.
Done this, the script should work!
wmp
ASKER
Bugger. I changed the script to what's below. This is the directory structure:
me@me-desktop:/var/sl$ pwd
/var/sl
me@me-desktop:/var/sl$ ls
drwxr-xr-x 3 me me 4096 2010-04-28 07:09 .
drwxr-xr-x 18 root root 4096 2010-04-18 08:06 ..
-rwxr-xr-x 1 me me 96 2010-04-27 06:59 all.sh
-rw-r--r-- 1 me me 17 2010-03-27 15:23 password.txt
drwxr-xr-x 2 me me 4096 2010-03-28 22:46 pgconfs
-rwxr-xr-x 1 me me 68 2010-03-27 20:09 pgloader.sh
-rwxr-xr-x 1 me me 271 2010-04-28 07:07 pgp.sh
-rw-r--r-- 1 me me 64008 2010-04-28 07:13 MID_20100307_1.txt.pgp
But, running the script gives me this:
me@me-desktop:/var/sl$ ./pgp.sh
You need a passphrase to unlock the secret key for
user: "xxxxxxxxxxxxxxxxxxxxxxxxx
2048-bit RSA key, ID XXXXXXX, created 2010-03-10 (main key ID XXXXXXX)
gpg: gpg-agent is not available in this session
gpg: encrypted with ELG-E key, ID XXXXXXXX
gpg: encrypted with 2048-bit RSA key, ID XXXXXXXX, created 2010-03-10
"XXXXXXXXXXXXXXXXXXXXXXX"
gpg: public key decryption failed: bad passphrase
gpg: decryption failed: secret key not available
me@me-desktop:/var/sl$ pwd
/var/sl
me@me-desktop:/var/sl$ ls
drwxr-xr-x 3 me me 4096 2010-04-28 07:09 .
drwxr-xr-x 18 root root 4096 2010-04-18 08:06 ..
-rwxr-xr-x 1 me me 96 2010-04-27 06:59 all.sh
-rw-r--r-- 1 me me 17 2010-03-27 15:23 password.txt
drwxr-xr-x 2 me me 4096 2010-03-28 22:46 pgconfs
-rwxr-xr-x 1 me me 68 2010-03-27 20:09 pgloader.sh
-rwxr-xr-x 1 me me 271 2010-04-28 07:07 pgp.sh
-rw-r--r-- 1 me me 64008 2010-04-28 07:13 MID_20100307_1.txt.pgp
But, running the script gives me this:
me@me-desktop:/var/sl$ ./pgp.sh
You need a passphrase to unlock the secret key for
user: "xxxxxxxxxxxxxxxxxxxxxxxxx
2048-bit RSA key, ID XXXXXXX, created 2010-03-10 (main key ID XXXXXXX)
gpg: gpg-agent is not available in this session
gpg: encrypted with ELG-E key, ID XXXXXXXX
gpg: encrypted with 2048-bit RSA key, ID XXXXXXXX, created 2010-03-10
"XXXXXXXXXXXXXXXXXXXXXXX"
gpg: public key decryption failed: bad passphrase
gpg: decryption failed: secret key not available
#!/bin/sh
pass_phrase=$(<"/var/sl/password.txt")
destination="/var/www/decrypted"
cd /var/sl/
for FILE in *.pgp;
do
FILENAME=${FILE%.pgp}
gpg --passphrase "$pass_phrase" --output "$destination/$FILENAME" --decrypt "$FILE"
rm -f $FILE
done
So you're actually trying to decrypt only MID_20100307_1.txt.pgp I assume?
If so, no problem.
We need some debugging of this "passphrase" thing.
Please modify your script this way and post the output -
#!/bin/sh
pass_phrase=$(<"/var/sl/pa
echo pass_phrase: $pass_phrase
destination="/var/www/decr
cd /var/sl/
for FILE in *.pgp;
do
FILENAME=${FILE%.pgp}
echo FILE: $FILE FILENAME: $FILENAME
echo gpg --passphrase "$pass_phrase" --output "$destination/$FILENAME" --decrypt "$FILE"
echo rm -f $FILE
done
Please obfuscate your passphrase before posting - but nothing else, please!
wmp
If so, no problem.
We need some debugging of this "passphrase" thing.
Please modify your script this way and post the output -
#!/bin/sh
pass_phrase=$(<"/var/sl/pa
echo pass_phrase: $pass_phrase
destination="/var/www/decr
cd /var/sl/
for FILE in *.pgp;
do
FILENAME=${FILE%.pgp}
echo FILE: $FILE FILENAME: $FILENAME
echo gpg --passphrase "$pass_phrase" --output "$destination/$FILENAME" --decrypt "$FILE"
echo rm -f $FILE
done
Please obfuscate your passphrase before posting - but nothing else, please!
wmp
ASKER
Ok.... (There is just one pgp file that happens to be in there right now as a test. There will actually be between 4 and 7 .pgp) Note that I didn't remove pass_phrase, it simply didn't output anything...
pass_phrase:
FILE: MID_20100307_1.txt.pgp FILENAME: MID_20100307_1.txt
gpg --passphrase --output /var/www/decrypted/MID_20100307_1.txt --decrypt MID_20100307_1.txt.pgp
rm -f MID_20100307_1.txt.pgp
Ok, so please examine /var/sl/password.txt. What's in there?
When you do (at the shell prompt)
cat /var/sl/password.txt
or
pass_phrase=$(<"/var/sl/pa
echo xxx_${pass_phrase}_xxx
what do you see?
When you do (at the shell prompt)
cat /var/sl/password.txt
or
pass_phrase=$(<"/var/sl/pa
echo xxx_${pass_phrase}_xxx
what do you see?
ASKER
The password. (Below, I've replaced numbers with #, capital letters with X, lowercase letters with x)
me@me-desktop:/var/sl_bin$
##xxxxXXXxxXxxXX
me@me-desktop:/var/sl_bin$
##xxxxXXXxxXxxXX
ASKER
(And yes, I moved sl to sl_bin and reran through all of the suggestions using this path... just to see...)
And this
pass_phrase=$(<"/var/sl_bi
echo xxx_${pass_phrase}_xxx
?
pass_phrase=$(<"/var/sl_bi
echo xxx_${pass_phrase}_xxx
?
ASKER
Sorry, yes... that yields this:
passphrase:
xxx__xxx
FILE: MID_20100307_1.txt.pgp FILENAME: MID_20100307_1.txt
gpg --passphrase --output /var/www/decrypted/MID_20100307_1.txt --decrypt MID_20100307_1.txt.pgp
rm -f MID_20100307_1.txt.pgp
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Well.... the pedestrian way worked.... So, thanks! I'm wondering if there's something that prevents it from reading in a plain text password? I don't know.... Anyway, thanks.
looks rather good at first sight!
What are the contents of password.txt? The required passphrase must be the first whitespace-delimited word in it to make your method work!
wmp