redact - an obfuscation utility
redact (option [option-arg]) ...
can encode or decode strings. It is NOT
secure, as it uses an easily
breakable algorithm. Yet, it provides a consistent way to obfuscate some
tokens without losing the possibility to retrieve their original values. The
items that this tool is meant to obfuscate, such as authenticated user-id's,
may be considered correct, even de rigueur, to divulge. However, they can be
abused by unethical people. For example, knowing the user id may aid password
The core function of this program is statically linked inside the zdkimfilter
executable, and dynamically linked with libnettle.
- -f config-filename
Specify an alternative configuration file. Only the redact_received_auth
configuration option is read from there.
- --password password
Use this password instead of the one in the configuration file.
- --encode clearstring
Produce an obfuscated version of clearstring.
- --decode obfuscated
Retrieve the clear string that this obfuscated token was derived from.
Display usage and exit.
Display package version string and exit.
Default configuration file.
Alessandro Vesely <email@example.com>
Explains configuration options, including redact_received_auth.
- RFC 6590
Redaction of potentially sensitive data from mail abuse reports.
Nettle - a low-level cryptographic library
Copyright © 2012-2021 Alessandro Vesely