Re: Securing command line passwords

To: David Baron <d_baron@012.net.il>
Cc: "debian-user@lists.debian.org" <debian-user@lists.debian.org>
Subject: Re: Securing command line passwords
From: Alvin Oga <aoga@ns.Linux-Consulting.com>
Date: Fri, 25 Feb 2005 01:14:53 -0800 (PST)
Message-id: <[🔎] Pine.LNX.3.96.1050225011222.17418A-100000@Maggie.Linux-Consulting.com>
In-reply-to: <[🔎] 200502251010.39616.d_baron@012.net.il>

On Fri, 25 Feb 2005, David Baron wrote:

> There are a few utilities around requiring a password to be entered to the 
> command line in order to be run non-interactively or to get onto a site to 
> run an upload or update, etc.
> 
> Elementary but crude and questionable: Place such scripts in a file with 
> restricted read-permissions. Cool.

don't do that
 
> Is there a way to do better than this? I am not addressing the issue of the 
> network/internet and packet sniffers and such--just the local machines.

use scp ... 
	- put your key in the other machine
	and less painful but less secure way is fix .shosts(?) or 
	.rhosts for rsh which you should not use

use nfs ..
	mount remote:/stuff /mnt/remote
	scp your-data /mnt/remote
	umount /mnt/remote

	( do NOT automount )
 
c ya
alvin

Reply to:

Follow-Ups:
- Re: Securing command line passwords
  - From: David Baron <d_baron@012.net.il>

References:
- Securing command line passwords
  - From: David Baron <d_baron@012.net.il>

Prev by Date: Re: gnome desktop
Next by Date: Re: help on-line radio (mozilla real plugin)
Previous by thread: Securing command line passwords
Next by thread: Re: Securing command line passwords
Index(es):
- Date
- Thread