Search This Blog

Thursday, 14 January 2021

GPG Encryption for Python scripts

Install GPG:

pip3 install python3-gnupg

Generate key and provide name, email and passphrase:

gpg --gen-key

 Create a text file:

nano creds.txt

DEFAULT_USERNAME=cisco

DEFAULT_PASSWORD=cisco

(Ctrl+O to save, then Enter) 

Encrypt the file:

gpg --symmetric -o encrypted.env.gpg creds.txt

 To decrypt the file:

gpg --decrypt encrypted.env.gpg

To flush the password cache:

echo RELOADAGENT | gpg-connect-agebt

OK

When you decrypt the file again you will be prompted for the passphrase.

To use this file in Nornir 2.5 use these variables in the code:

nr.invetory.defaults.username = os.getenv("DEAFAULT_USERNAME")

nr.invetory.defaults.password = os.getenv("DEAFAULT_PASSWORD")

To execute the python script using the encrypted file use:

env $(gpg --decrypt encrypted.env.gpg) python3 encrypted-showipintbrief.py

at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Nornir Compliance Check

  • Python regex to extract IP addresses from text file
     If you need to extract IP Addresses from a text file with thousands or even millions of lines of text and you have something better to do t...
  • Syslog-NG to MySql
    Install prerequisites:  apt install syslog-ng apt install syslog-ng-libdbi apt install libdbi-drivers apt install libdbi-devel apt install l...
  • Nornir Compliance Check
     Credits to IPvZero for this who posted the original solution which was modified to suit my needs : https://github.com/IPvZero/nornir-test-c...