Re: CGI security on a shared web server

From: Kurt Seifried (bugtraq@seifried.org)
Date: 05/23/02 

From: "Kurt Seifried" <bugtraq@seifried.org>
To: "George Dinwiddie" <gdinwiddie@min.net>, <secprog@securityfocus.com>
Date: Thu, 23 May 2002 14:05:36 -0600

One possible solution, assuming you need to write the data but not read it
until later is to encrypt it, generate a public/private keypair using
pgp/gnupg, load the public key onto the server with your app, have it write
the files after encrypting the data. Thus you can retrieve the data (ftp,
www, whatever) and then decrypt it at your leisure and use it.

Kurt Seifried, kurt@seifried.org
A15B BEE5 B391 B9AD B0EF
AEB0 AD63 0B4E AD56 E574
http://seifried.org/security/
http://www.iDefense.com/

Relevant Pages

  • Re: CGI security on a shared web server
    ... >> until later is to encrypt it, generate a public/private keypair using ... whatever) and then decrypt it at your leisure and use it. ... >runs as nobody, the CGI script must be executable for nobody. ...
    (SecProg)
  • Re: Urgent: Securing a .net 1.1 application
    ... code will only load if the public key is the same, ... You could encrypt some functionality into a dll and load it at ...
    (microsoft.public.dotnet.security)
  • Re: Search feature in an encrypted database
    ... Thanks for your answer Daniel but isn't there a more efficient way? ... Load the Data to a DataSet. ... >> bytes from the stored string, decrypt them and show them the ... >> When I need to validate a user I encrypt his typed username and password ...
    (microsoft.public.dotnet.security)
  • Re: pdflush and dm-crypt
    ... we have a lot of stuff to encrypt ... > during writeback"? ... was just io load and pdflush got stuck on them. ... send the line "unsubscribe linux-kernel" in ...
    (Linux-Kernel)
  • Re: Encrypting Linux partitions
    ... How is the system BIOS going find, load, and decrypt the system kernel ... You could probably use an initrd if you really want to encrypt your root ... I have all my partitions under lvm. ...
    (comp.os.linux.misc)