Encrypting pool files using cntools question

Terminada · 30 October 2022 01:01

OK, I see the encryptFile function in the cntools.library that provides this “feature”:

# Command     : encryptFile [file] [password]
# Description : Encrypt file with GPG
# Parameters  : file      >  Path for file to encrypt, will get a new .gpg file extention added to filename
#             : password  >  Password to encrypt file with
encryptFile() {
  exec >&6 2>&7 # normal stdout/stderr
  sleep 0.1
  echo "${2}" | gpg --symmetric --yes --batch --cipher-algo AES256 --passphrase-fd 0 --output "${1}.gpg" "${1}" &>/dev/null && \
  safeDel "${1}" >/dev/null || {
    exec >&8 2>&9 # custom stdout/stderr
    println ERROR "${FG_RED}ERROR${NC}: failed to encrypt ${1}"
    return 1
  }
  exec >&8 2>&9 # custom stdout/stderr
  println DEBUG "${1} successfully encrypted"
}

So cntools encourages cold keys to be actually hot and on the same machine!

Topic		Replies	Views
Which files should I keep on my block producer? Community Technical Support	2	396	16 April 2022
CNTOOLS decrypt Operate a Stake Pool	4	382	30 May 2021
Deleting cold keys - permission denied Operate a Stake Pool	35	1045	26 April 2023
Cold & Private Keys within CNTools Operate a Stake Pool	13	1438	18 May 2023
Rotating KES, possible to do offline? Operate a Stake Pool	3	509	11 August 2021

Encrypting pool files using cntools question

Related topics