Changes between Version 3 and Version 4 of administration/security

Timestamp:

Oct 7, 2009, 9:27:32 PM (13 years ago)

Author:

hank

Comment:

--

administration/security

@@ -70 +70 @@
 Master passphrase file is located in the sfpass home and called
 '''passphrase-master.gpg'''
-This file is edited by sfkeys in encrypted form only.  See this page for info about 
-vim plugin to edit encrypted in place (decrypted file never touches disk)
-http://www.vim.org/scripts/script.php?script_id=661
+This file is edited by sfkeys in encrypted form only.
 
-To initially create the gpg file the command is:
+Admins will have separate passphrase files located at /home/sfpass/passphrase-<admin>.gpg.  
+At this time we just have one passphrase file located at /home/sfpass/passphrase.gpg which
+is readable by all admins.
+
+To render the decrypted passphrase file to STDOUT (note the additional dash):
 {{{
-gpg -c decryptedfile
+gpg -o - /home/sfpass/passphrase.gpg
 }}}
-
-Administrators will su to sfpass and access the passphrase file by standard out
-only.  passphrase-master will require the appropriate password. 
-
-To render decrypted file to STDOUT (note the additional dash):
-{{{
-gpg -o - file.gpg
-}}}
-
-[/browser/trunk/third-party/vim_gnu_plugin/gnupg.vim Plugin for editing encrypted files in place using vim.]
 
 
 '''Never save decrypted passphrase file to disk- View standard out only, and 
 cut/paste passphrase to another terminal'''
+
+For tips on creating and editing GPG files view the [/wiki/administration/system-admin Using GPG] section 
+in the administration guide.
 
 == Tunneling to specific !SilverFile appliance ==