Re: Securing command line passwords
On Fri, 25 Feb 2005, David Baron wrote:
> There are a few utilities around requiring a password to be entered to the
> command line in order to be run non-interactively or to get onto a site to
> run an upload or update, etc.
>
> Elementary but crude and questionable: Place such scripts in a file with
> restricted read-permissions. Cool.
don't do that
> Is there a way to do better than this? I am not addressing the issue of the
> network/internet and packet sniffers and such--just the local machines.
use scp ...
- put your key in the other machine
and less painful but less secure way is fix .shosts(?) or
.rhosts for rsh which you should not use
use nfs ..
mount remote:/stuff /mnt/remote
scp your-data /mnt/remote
umount /mnt/remote
( do NOT automount )
c ya
alvin
Reply to: