filepro and the SYSTEM command on SuSE Linux

Brian K. White brian at aljex.com
Fri Nov 9 10:13:32 PST 2007


----- Original Message ----- 
From: "Nancy Palmquist" <nlp at vss3.com>
To: "filePro List" <filepro-list at lists.celestial.com>
Sent: Friday, November 09, 2007 11:32 AM
Subject: Re: filepro and the SYSTEM command on SuSE Linux


> Fairlight wrote:
>> Yo, homey, in case you don' be listenin', Jay Ashworth done said:
>>> On Fri, Nov 09, 2007 at 09:56:38AM -0500, Nancy Palmquist wrote:
>>>> I make a command string that looks like this:
>>>>
>>> 2) GPG purposefully won't accept a redirected passphrase, reading it
>>> from the terminal rather than standard input?
>>
>> That's going to be the culprit.  Nevermind the redirect--it may be 
>> entirely
>> discarded.  The problem is that it's probably hanging waiting for data on
>> STDIN, and it's never going to get any with the command above.
>>
>
> But it does get standard input from the command above.
>
> gpg --passphrase-fd 0 --output test_PR11944787tmetropr05.xml --decrypt
> test_PR11944787tmetropr05.xml.pgp < /myblessedpassph.txt
>
> I shortened the filenames.  Did you miss the syntax in the longer
> version that wrapped around?

Why guess?
Try to collect error mesages and a snapshot of the env.

system "L=/tmp/gpglog.txt ;date >$L ;id >>$L ;ls -l >>$L ;set >>$L ;gpg ... 
 >>$L 2>&1"

If you are in a dir the user can't write temp files in, or if the user 
doesn't have permissions to read/write the temp files, (maybe user foo 
creates the files and user filepro can't read or modify, or vice-versa) or 
if gpg outputs any error messages or interactive prompts everything will be 
in /tmp/gpglog.txt to look at.

Some other fd besides 0 1 or 2 might be a good idea too, or better yet some 
completely other way that doesn't rely on redirection if there is any.
Seems like the --batch and --no-tty options are relevant here...
as well as --yes or --no, --debug-all
or heck: --passphrase-file filename and --passphrase string

These are from gpg2 on suse 10.3 which is brand new, and "--passphrase-file 
file" and "--passphrase string" both specifically say "This is different 
from gpg." so possibly you don't have those options or possibly they work 
differently, but since they exist now merely in a newer version of gpg, I'd 
get the newer gpg and use them.

Except...
Considering that all these options are listed under a section named "stuff 
you don't usually want to do" I'm guessing there is a more correct way to 
use gpg non-interactively that doesn't involve using a passphrase, 
presumably because the entire point of a passphrase is to demand an 
interactive response and not work without one. (I'm only guessing about 
that)

So really I'd be most interested in Mark's suggestion since he sounds like 
he does it the "right" way.

Brian K. White    brian at aljex.com    http://www.myspace.com/KEYofR
+++++[>+++[>+++++>+++++++<<-]<-]>>+.>.+++++.+++++++.-.[>+<---]>++.
filePro  BBx    Linux  SCO  FreeBSD    #callahans  Satriani  Filk!
 



More information about the Filepro-list mailing list