allows one to easily encrypt and decrypt files symmetrically using openssl and python3

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for mverleg from gravatar.com mverleg

Unverified details

These details have not been verified by PyPI
Project links
GitHub Statistics

View statistics for this project via Libraries.io, or by using our public dataset on Google BigQuery

Meta

License: BSD License (Revised BSD License (LICENSE.txt))

Author: (the author)

Tags encryption, openssl

Classifiers

Project description

fileenc-openssl

This code allows one to easily encrypt and decrypt files symmetrically using openssl and python3.

  • Uses aes-256-cbc for file encryption (as implemented by openssl)

  • Uses a salt when encrypting (to avoid pre-computation or rainbow tables).

  • Uses sha256 key stretching (with <0.1s) to make brute force prohibitively expensive.

  • Uses sha256 checksum to check file integrity.

Installation

You can install using

pip install fileenc-openssl

If you want fileenc and filedec available system-wide, use sudo or equivalent.

Usage

From command line:

fileenc --key 'password123' --input '*.png' --check --overwrite
filedec --key 'password123' --input '*.png.enc' --check --overwrite --remove
# the quotes around wildcards are important

From python:

from fileenc_openssl import stretch_key, encrypt_file, decrypt_file
stretched_key = stretch_key('password123')
enc_pth = encrypt_file(raw_pth, key=stretched_key)
res_pth = decrypt_file(enc_pth, key=stretched_key)

Testing (needs py.test):

py.test

Options

You can find all options using fileenc --help:

-h, --help              show this help message and exit
-k KEY, --key KEY       the key to use for encryption; you will be prompted for one if this is not provided (more secure)
-i INP, --input INP     input file, directory or pattern (as a single string) (.enc will be appended)
-o OUTP, --output OUTP  optionally, output file or directory (.enc will be stripped if available)
-d, --decrypt           decrypt the input file(s) (as opposed to encrypt, which is the default)
-f, --overwrite         overwrite existing files when decrypting (encrypting always overwrites)
-r, --remove            remove the input file after en/decrypting (after --check)
-c, --check             test the encryption by reversing it (abort on failure) (only for ENcryption due to salting)

License

Revised BSD License; at your own risk, you can mostly do whatever you want with this code, just don’t use my name for promotion and do keep the license file.

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for mverleg from gravatar.com mverleg

Unverified details

These details have not been verified by PyPI
Project links
GitHub Statistics

View statistics for this project via Libraries.io, or by using our public dataset on Google BigQuery

Meta

License: BSD License (Revised BSD License (LICENSE.txt))

Author: (the author)

Tags encryption, openssl

Classifiers

Release history Release notifications | RSS feed

1.3.1

1.3.0

1.2.5

This version

1.2.4

1.2.3

1.2.1

1.1.1

1.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

fileenc-openssl-1.2.4.tar.gz (5.5 kB view hashes)

Uploaded Source

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page