On Fri 20 Apr 2018 at 20:38:48 (+0100), Brian wrote:
> T have a script. It contains an important password.
If you cat /usr/local/bin/myscript do you see your important
password on the screen?
> I have encrypted the script with
> scrypt [enc] -t 10 /usr/local/bin/myscript
> I can, of course, decrypt it with
> scrypt dec /usr/local/bin/myscript
> and then execute the script.
> The two last steps have been combined into
> DECRYPT=$(scrypt dec /usr/local/bin/myscript) && eval "$DECRYPT"
> Should I have any more concerns with this command than I have with the
> two-step process?
If so, then won't the password be revealed by ps while eval is