Zsh Mailing List Archive Messages sorted by: Reverse Date, Date, Thread, Author

Re: Commands with passwords as options

X-seq: zsh-users 15751
From: Mikael Magnusson <mikachu@xxxxxxxxx>
To: Julien Nicoulaud <julien.nicoulaud@xxxxxxxxx>
Subject: Re: Commands with passwords as options
Date: Tue, 1 Feb 2011 22:28:53 +0100
Cc: zsh-users <zsh-users@xxxxxxx>
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=ysCu9ToHqduOmUB5yf4tBR4vZLS+hfvqQslt3PD4sD4=; b=Qxot96SpNTymrKVHvIFmmh9Gc8WU1xuf+b6NWOxPvoQQVIVJZeHcJaTzGmKnbESD8j Wuzd2jotNyhZcwZajksE3qUnlvcRRFmfq7QeX42dDGm1qixdB1RfmJNC48EvGROeh1o1 cTzsC+OnFGTPlMVBVH7ddzO11XS9iLO4Ln+gA=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; b=fVXUXolzMBEoVJw/hu4QANZShWpA1EDj3jIJ4kGIUyHPpXWj15P5H4p25mwbWoPtfI lDsNotM/C+Tl4LwpWFR2f/1hlUTHgVbpm39xoqcS+7d0XqWYHW151HjV9s/CVK/SLBTr U/BRW9GLV+AaOmVJNYg3XEFsZuE1hz3xte+xs=
In-reply-to: <AANLkTi=vmDkSaef2r-gaMK=6en=EYyCsWbVppRsPwF5r@mail.gmail.com>
List-help: <mailto:zsh-users-help@zsh.org>
List-id: Zsh Users List <zsh-users.zsh.org>
List-post: <mailto:zsh-users@zsh.org>
Mailing-list: contact zsh-users-help@xxxxxxx; run by ezmlm
References: <AANLkTi=vmDkSaef2r-gaMK=6en=EYyCsWbVppRsPwF5r@mail.gmail.com>

On 1 February 2011 22:15, Julien Nicoulaud <julien.nicoulaud@xxxxxxxxx> wrote:
> Some commands take passwords as option values, which is not very secure... I
> was wondering if there is some way to handle that, for example through a
> custom completer. Ideally, I here is how it should behave:
>  - When reaching an option which expected value is a password, prompt for it
> and read it from stdin
>  - Do not display it in the buffer (just replace it with "XXXX" for example)
>  - When accepting the buffer, replace the displayed buffer with the real one
>  - Save the displayed buffer in the history rather than the real one
>
> Does anyone have an idea on how to achieve this ?

That doesn't actually achieve anything, the password is still visible
in /proc/<pid>/cmdline.

-- 
Mikael Magnusson

Follow-Ups:
- Re: Commands with passwords as options
  - From: Julien Nicoulaud

References:
- Commands with passwords as options
  - From: Julien Nicoulaud

Messages sorted by: Reverse Date, Date, Thread, Author