openssl hmac and key on the command line

Carson Gaspar carson at taltos.org
Sat Jun 8 16:15:25 UTC 2024

Previous message (by thread): openssl hmac and key on the command line
Next message (by thread): openssl hmac and key on the command line
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 6/8/2024 5:12 AM, Neil Horman wrote:
> printf '%s' "hello" | LD_LIBRARY_PATH=$PWD ./apps/openssl dgst -sha1 
> -hmac $(cat key.txt)
> SHA1(stdin)= c3b424548c3dbd02161a9541d89287e689f076d7

That will expose the key in the process args, so is NOT secure.

-- 

Carson

Previous message (by thread): openssl hmac and key on the command line
Next message (by thread): openssl hmac and key on the command line
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the openssl-users mailing list