gpg decrypts files without asking for password

encryption gnupg
9,210

Solution 1

The phrase is cached by the GPG agent.

To clear the cache simply run

gpg-connect-agent reloadagent /bye

The encryption is not worthless, as the cache will be cleared upon logout, and will obviously not be transmitted with the file. Gpg is primarily meant to protect data in transit, and not from the logged-in user that encrypted it.

Solution 2

The GPG agent caches keys, see the manual page of gpg(1):

--symmetric
 -c
        Encrypt with a symmetric cipher using a passphrase. [..]  gpg
        caches the passphrase used for symmetric encryption so that a decrypt
        operation may not require that the user needs to enter the passphrase.
        The option --no-symkey-cache can be used to disable this feature.

So to disable caching for a single invocation, use something like:

gpg -c --no-symkey-cache your-file.txt

To make this setting persistent, add the option (without --) in ~/.gnupg/gpg.conf:

no-symkey-cache
Share:
9,210

Related videos on Youtube

JothamB
Author by

JothamB

Updated on September 18, 2022

Comments

  • JothamB
    JothamB over 1 year

    I run gpg -c file. It asks for a password (twice) and creates an encrypted file. So far so good.

    When I run gpg file.gpg to decrypt the file it decrypts it without asking for the password ! needless to say, this "encryption" is totally worthless.

    The gpg encryption, in gnome as well as in the command line, was working just fine for a while and simply broke at one moment and I don't know what I did or what happened.

    How to fix it ?

  • JothamB
    JothamB about 5 years
    I tried but it's not working gpg: invalid option "--no-symkey-cache"
  • wisbucky
    wisbucky over 4 years
    --no-symkey-cache was added in gpg 2.2.7. You'll need Ubuntu 18.10 or later to have that option.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

How to Automate gpg?
The safest way to backup GPG and SSH keys
GPG encrypt a file with only a passphrase (no key storage needed)
How do I use dm-crypt (LUKS) with GnuPG to use two-factor for FDE?
How to sign files with Ubuntu command-line tools and my own keys?
Decrypt with GPG, says I need a passphrase when I am inputting passphrase
Set up gpg to decrypt own local files without supplying passphrase
GPG2 Encryption - No public key error
Export gpg to p12 under windows
Unable to verify encrypted file signature