Zsh Mailing List Archive Messages sorted by: Reverse Date, Date, Thread, Author

Re: Encrypting history?

X-seq: zsh-users 14693
From: Richard Hartmann <richih.mailinglist@xxxxxxxxx>
To: zsh-users@xxxxxxx
Subject: Re: Encrypting history?
Date: Mon, 28 Dec 2009 21:30:58 +0100
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:content-type; bh=vWlkXdIIVYjKCZfH+9420AK6CYuGCW5OYyfwo5nbfbk=; b=f3UlZWeCwoaxYPQpDWsycxn+/bLzrFPDkCwRKgRYYKI68bsZGhekLSNpNpP4TLOzrp wp30plqplgVbVhjgnFlY/LkqG9idjjollgjGSoNkh6F24ufnkC25m4YdMYWGGNzEjWle VhBOWEpE99WutOO+yNjyHNnA/FHmV9mQL+CoY=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; b=iHUruVjdKwNc37qeAFNQIJkft6P19nOwiczliI9IBFOLs/O2OTZnILtsOqs/qGzx0m bSiNcWH9qfpMqo7oC/fwyjRnEOU3JxVc+STLq7mY6DC+YhSqPgz/fbPnUaalneKC2oZ4 7Wpit8n63/Y0dkxVQLlJ2p6qhePKWBwJAqM8o=
In-reply-to: <m2zl55uyzl.fsf@xxxxxxxxxx>
List-help: <mailto:zsh-users-help@zsh.org>
List-id: Zsh Users List <zsh-users.zsh.org>
List-post: <mailto:zsh-users@zsh.org>
Mailing-list: contact zsh-users-help@xxxxxxx; run by ezmlm
References: <m2zl55uyzl.fsf@xxxxxxxxxx>

On Sat, Dec 26, 2009 at 23:55, Lloyd Zusman <ljz@xxxxxxxxxx> wrote:

> Finally, on logout, pipe the output of "fc -ln 1" through a program
> which uses the same password entered at login time to encrypt the
> history and write it to the ~/.ehistory file.

If you are using a block cipher, and you probably are, you should
put a salt which changes with each save at the beginning of the
file.
While I don't know of an example of attacks based on this working
on current ciphers, it's good practice, nonetheless.

Richard

Follow-Ups:
- Re: Encrypting history?
  - From: Lloyd Zusman

References:
- Encrypting history?
  - From: Lloyd Zusman

Messages sorted by: Reverse Date, Date, Thread, Author