[70] in The Cryptographic File System users list
CFS encrypted accounts
daemon@ATHENA.MIT.EDU (Rob Stampfli)
Mon Apr 27 01:21:11 1998
From owner-cfs-users@research.att.com Mon Apr 27 05:21:10 1998
Return-Path: <owner-cfs-users@research.att.com>
Delivered-To: cfs-mtg@bloom-picayune.mit.edu
Received: (qmail 13548 invoked from network); 27 Apr 1998 05:21:09 -0000
Received: from unknown (HELO ns.research.att.com) (192.20.225.4)
by bloom-picayune.mit.edu with SMTP; 27 Apr 1998 05:21:09 -0000
Received: from research.att.com ([135.207.30.100]) by ns; Mon Apr 27 01:19:24 EDT 1998
Received: from amontillado.research.att.com ([135.207.24.32]) by research-clone; Mon Apr 27 01:09:25 EDT 1998
Received: from nsa.research.att.com (majordomo@nsa.research.att.com [135.207.24.155])
by amontillado.research.att.com (8.8.7/8.8.7) with ESMTP id BAA05219;
Mon, 27 Apr 1998 01:09:24 -0400 (EDT)
Received: (from majordomo@localhost) by nsa.research.att.com (8.7.3/8.7.3) id BAA01355 for cfs-users-list; Mon, 27 Apr 1998 01:06:56 -0400 (EDT)
X-Authentication-Warning: nsa.research.att.com: majordomo set sender to owner-cfs-users@nsa.research.att.com using -f
Received: from research.att.com (research-clone.research.att.com [135.207.30.100]) by nsa.research.att.com (8.7.3/8.7.3) with SMTP id BAA01323 for <cfs-users@nsa.research.att.com>; Mon, 27 Apr 1998 01:06:52 -0400 (EDT)
Received: from elektro.cmhnet.org ([192.188.133.3]) by research-clone; Mon Apr 27 01:08:10 EDT 1998
Received: from colnet by elektro.cmhnet.org with uucp
(Smail3.1.29.1 #1) id m0yTg8O-0000YNC; Mon, 27 Apr 98 01:07 EDT
Received: from kd8wk.cmhnet.org by colnet.cmhnet.org with smtp
(Smail3.1.28.1 #4) id m0yTg4z-0008F9C; Mon, 27 Apr 98 01:03 EDT
Received: by kd8wk.cmhnet.org (Smail3.1.28.1 #4)
id m0yTg4g-0000nqC; Mon, 27 Apr 98 01:03 EDT
Message-Id: <m0yTg4g-0000nqC@kd8wk.cmhnet.org>
Date: Mon, 27 Apr 98 01:03 EDT
From: res@kd8wk.cmhnet.org (Rob Stampfli)
To: cfs-users@research.att.com
Subject: CFS encrypted accounts
Sender: owner-cfs-users@research.att.com
Precedence: bulk
For what it's worth, here is the .profile I am currently using to protect
several accounts:
#
# Generic .profile for an account protected by cfs.
# (compatible with /bin/sh and /bin/ksh)
#
umask 077
while [ ! -d .cd ]
do
echo "You do not have an encrypted directory. Creating one..."
echo "Select a Directory \c"
cmkdir .cd
done
# Note: hidden directories tend to break trn and xv.
# D=.$RANDOM.$RANDOM
# export RANDOM=0
D=$LOGNAME
# Allow two tries at cfs password:
cattach .cd $D || cattach .cd $D || exit 1
# Note: the 'exec' below is needed to prevent an NFS write err 70
# on cdetach, due to the severing of open fd to ksh history file.
trap "exec cdetach $D" 0
HOME=/crypt/$D
cd $HOME || exit 1
[ -d tmp ] && TMPDIR=$HOME/tmp && export TMPDIR
[ -f .profile ] && . ./.profile
