Re: debian installation

To: debian-user@lists.debian.org
Subject: Re: debian installation
From: John Hasler <john@dhh.gt.org>
Date: 21 Aug 1999 19:26:41 -0500
Message-id: <[🔎] 87yaf4hd8e.fsf@hasler.dhh>
In-reply-to: Justin Wells's message of "Sat, 21 Aug 1999 18:34:11 -0400"
References: <[🔎] 199908200957.AA9240870@mail.webaccess.net> <[🔎] 37BD9836.E6B9D0A9@bme.ri.ccf.org> <[🔎] 37C0FB36.D4559BE@webaccess.net> <[🔎] 87zozkokxn.fsf@hasler.dhh> <[🔎] 19990821183411.B6982@semiotek.com>

Justin Wells writes:
> A good middle ground might be to read the password from an environment
> variable.

Never ever put a password in an environment variable.

> Then I could write the script that sets the environment variable and
> calls your script

What script are you referring to?   pppconfig sets up provider files and
chatscripts and edits the secrets files but does nothing at run time.  pon
is just '/usr/sbin/pppd call ${1:-provider}'.  The way I would support
dynamic passwords is by having pppconfig generate a script and call it from
the connect line in the provider file instead of chat.

> Of course there is a security consideration here, but on a home machine
> it's unlikely to be a big issue.

Never ever put a password in an environment variable.
-- 
John Hasler
john@dhh.gt.org (John Hasler)
Dancing Horse Hill
Elmwood, WI

Reply to:

Follow-Ups:
- Re: debian installation
  - From: Justin Wells <jread@semiotek.com>

References:
- Re: debian installation
  - From: "Julian Taylor" <julian@mail.webaccess.net>
- Re: debian installation
  - From: Evan Van Dyke <vandyke@bme.ri.ccf.org>
- Re: debian installation
  - From: "Julian S. Taylor" <julian@webaccess.net>
- Re: debian installation
  - From: John Hasler <john@dhh.gt.org>
- Re: debian installation
  - From: Justin Wells <jread@semiotek.com>

Prev by Date: Re: debian installation
Next by Date: Re: restricted shell
Previous by thread: Re: debian installation
Next by thread: Re: debian installation
Index(es):
- Date
- Thread