[tor-bugs] #4846 [Thandy]: Safe password caching for package/bundle creation
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Fri Jan 6 10:46:32 UTC 2012
#4846: Safe password caching for package/bundle creation
-------------------------+--------------------------------------------------
Reporter: chiiph | Owner: nickm
Type: enhancement | Status: new
Priority: normal | Milestone:
Component: Thandy | Version:
Keywords: | Parent:
Points: | Actualpoints:
-------------------------+--------------------------------------------------
The SignerCLI script asks for a key password to sign the package or bundle
being created, which is a good thing when you are creating one or two
packages. A problem appears when we need to make more than 10 packages or
bundles automatically, and you have to type your password too many times
because SignerCLI can't cache the password from run to run in a safe way
(I think). So we should try to see if we can come out with a good solution
for this, otherwise it's likely to force the packager to use unsafe
passwords.
One idea may be to create an "interpreter script" that asks for the
password once, and executes a kind of script with the same password for
each step.
For example, right now we do:
python SignerCLI.py makepackage ...
python SignerCLI.py makepackage ...
python SignerCLI.py makepackage ...
python SignerCLI.py makebundle ...
We can turn this to:
signer makepackage ...
signer makepackage ...
signer makepackage ...
signer makebundle ...
And have a python script that recognizes the first word, "signer" in this
case, and runs the SignerCLI.py script with the parameters that follow.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/4846>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list