[sup-talk] how to replace (al)pine's passfile functionality
nicolas.pouillard at gmail.com
Mon Apr 26 03:23:38 EDT 2010
On Mon, 26 Apr 2010 00:57:39 -0400 (EDT), Erik Quaeghebeur <sup at equaeghe.nospammail.net> wrote:
> (Al)pine has a passfile functionality: a (weakly) encrypted file contains
> the passwords necessary for imap, nntp, and smpt connections. For sup
> (0.11 on ruby 1.8), I use offlineimap and msmpt, both of which need
> passwords either stored in plaintext in their config files or in the netrc
> file. Is there any way to use some kind of encrypted netrc (something in
> the vein of kde's wallet), which is decrypted/made accessible on login or
> with a one-time password dialog?
What I do is to store these sensitive configuration files on some encrypted
filesystem. Encfs and dmcrypt-luks (linux only) are fine choices to do so.
The result is that if someone get root access or your access to the machine
then yes he has the password but its much worse than that since he can setup
a keylogger patch your binaries...
However the good news is that if he needs to reboot the machine then all of
these filesystem will get unreadable.
More information about the sup-talk