Zsh Mailing List Archive
Messages sorted by: Reverse Date, Date, Thread, Author

Re: Encrypting history?



On Sat, Dec 26, 2009 at 23:55, Lloyd Zusman <ljz@xxxxxxxxxx> wrote:

> Finally, on logout, pipe the output of "fc -ln 1" through a program
> which uses the same password entered at login time to encrypt the
> history and write it to the ~/.ehistory file.

If you are using a block cipher, and you probably are, you should
put a salt which changes with each save at the beginning of the
file.
While I don't know of an example of attacks based on this working
on current ciphers, it's good practice, nonetheless.


Richard



Messages sorted by: Reverse Date, Date, Thread, Author