There are a few utilities around requiring a password to be entered to the command line in order to be run non-interactively or to get onto a site to run an upload or update, etc. Elementary but crude and questionable: Place such scripts in a file with restricted read-permissions. Cool. Is there a way to do better than this? I am not addressing the issue of the network/internet and packet sniffers and such--just the local machines.