From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <mortenkjarulff@gmail.com>
Received: from mail-oi1-x22b.google.com (mail-oi1-x22b.google.com
 [IPv6:2607:f8b0:4864:20::22b])
 by sourceware.org (Postfix) with ESMTPS id 672DA388A030
 for <cygwin@cygwin.com>; Sat,  4 Apr 2020 11:41:26 +0000 (GMT)
DMARC-Filter: OpenDMARC Filter v1.3.2 sourceware.org 672DA388A030
Received: by mail-oi1-x22b.google.com with SMTP id e4so8636232oig.9
 for <cygwin@cygwin.com>; Sat, 04 Apr 2020 04:41:26 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:mime-version:references:in-reply-to:from:date
 :message-id:subject:to;
 bh=lGotEkTeGRx3pN4sJzJxEM9JJxjk5A1x+J64/nBPvfM=;
 b=UvMxYJ48AmiA9eNhPnyWshiUbdmZXpyyiaeA6k7qZ2QLDQhZMr+KZr7AYATCVxEcFK
 FAolXnf7B2kHgNUcHk8owb3UGnmvNOu0wStkyr1fwrwZ35fG5yfF57BcgPygqOEQJPZV
 1x0YSeLK+TVvfvjY03UgFi+YdpNblWCYBiGAub67IgdUGxLNE8Qolwa7V3mMG94zX5SU
 SY3ngPXWARuLH5N0CxV+yCZb7Mb3VdyVFAqgQaj62C7fOfybUNDxUhFVRrpUeqp2tsqN
 N3002R0RbzglE86oIGgw2dw6ANZTofmzmejaikD94849SnUXB1fpdl9ceIjJRwgfATqe
 BDtA==
X-Gm-Message-State: AGi0PuZZlFO91iHUjpXuLsBfYJ9o0SCWnovxWyfnwmnokPkBBtc+3IFf
 hjrEpWqezh8nkPNzTluJpQQBMUEZjmUOLQJN3injveJp
X-Google-Smtp-Source: APiQypKp3qCFixMazv/9EwaromwRP8YwmQSAMuAG/E/wMriGza8ryfwSfGJ1aAh0Rx9pF/XjSUF3JV2JfLmbx4Q7Cng=
X-Received: by 2002:a05:6808:207:: with SMTP id
 l7mr6586851oie.171.1586000485385; 
 Sat, 04 Apr 2020 04:41:25 -0700 (PDT)
MIME-Version: 1.0
References: <CA+7cx1pHS+=+h15rUZ5biSwKb=mxprMx7VadRRqm4Q4MYj+ewg@mail.gmail.com>
In-Reply-To: <CA+7cx1pHS+=+h15rUZ5biSwKb=mxprMx7VadRRqm4Q4MYj+ewg@mail.gmail.com>
From: =?UTF-8?Q?Morten_Kj=C3=A6rulff?= <mortenkjarulff@gmail.com>
Date: Sat, 4 Apr 2020 13:41:12 +0200
Message-ID: <CA+7cx1oXomuqvZLr1uNAbsdJ1M5M6cKgKsptJi0=C+TbGaCZaQ@mail.gmail.com>
Subject: Protecting .netrc
To: cygwin@cygwin.com
X-Spam-Status: No, score=-2.5 required=5.0 tests=BAYES_00, DKIM_SIGNED,
 DKIM_VALID, DKIM_VALID_AU, DKIM_VALID_EF, FREEMAIL_FROM, FREEMAIL_REPLY,
 HTML_MESSAGE, RCVD_IN_DNSWL_NONE, SPF_HELO_NONE, SPF_PASS,
 TXREP autolearn=no autolearn_force=no version=3.4.2
X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on
 server2.sourceware.org
Content-Type: text/plain; charset="UTF-8"
X-Content-Filtered-By: Mailman/MimeDel 2.1.29
X-BeenThere: cygwin@cygwin.com
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: General Cygwin discussions and problem reports <cygwin.cygwin.com>
List-Unsubscribe: <http://cygwin.com/mailman/options/cygwin>,
 <mailto:cygwin-request@cygwin.com?subject=unsubscribe>
List-Archive: <https://cygwin.com/pipermail/cygwin/>
List-Post: <mailto:cygwin@cygwin.com>
List-Help: <mailto:cygwin-request@cygwin.com?subject=help>
List-Subscribe: <http://cygwin.com/mailman/listinfo/cygwin>,
 <mailto:cygwin-request@cygwin.com?subject=subscribe>
X-List-Received-Date: Sat, 04 Apr 2020 11:41:27 -0000

Hi.

No need to say that putting passwords in plain text file is a bad idea.
But if I use .netrc, wouldn't below be a bit (lot?) safer?
Assuming I have a good passphrase on my key.

It seems so simple, that I fear I am not getting anything out of it.

Morten

#!/bin/sh

# Install utils/gnupg2

# gpg2 --generate-key

# mkdir ~/secrets

# gpg2 -e -r YOU@EMAIL.COM <~/.netrc >~/secrets/netrc.enc

# rm ~/.netrc

# mkfifo ~/.netrc

while true ; do
  gpg2 -d <~/secrets/netrc.enc >~/.netrc
done