Re: Small encryption script

Security is hard. I spotted two *major* weaknesses in a cursory glance.

No salting is employed. If the same password is used twice, your security could be weakened.
A low entropy password will likely be supplied. Often, the human-readable password protects the high-entropy randomly-generated password that will actually be used.

Comment on Re: Small encryption script

Replies are listed 'Best First'.
Re^2: Small encryption script by roboticus (Chancellor) on Apr 06, 2007 at 04:27 UTC
(3) ...not to mention that the `ps` command could show your password. Update: Somehow, I managed to not pay attention to the second paragraph of the OP, as indicated by the venerable ikegami. 8^) /Update ...roboticus	[reply] [d/l]
Re^3: Small encryption script by ikegami (Patriarch) on Apr 06, 2007 at 13:32 UTC
The OP said he would address that.	[reply]