[Duplicity-talk] Unsafe(?) use of environment variable for storage of cl

duplicity-talk

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Duplicity-talk] Unsafe(?) use of environment variable for storage of cl

From:	Christian Joergensen
Subject:	[Duplicity-talk] Unsafe(?) use of environment variable for storage of cleartext passphrase
Date:	Thu, 28 Apr 2005 23:51:55 +0200

Hello

I am a bit concerned of the use of environment variables for cleartext
storage of the passphrase. From what I see, it is just a matter of
finding the correct process and then using the ps argument 'e' to
retrieve the passphrase. 

Is there any other more secure way to tell duplicity my passphrase
without logging in to every server every night to run my backups
manually? :)

Thank you.

-- 
Christian Jørgensen | Concatenation; the process of gluing one cat's 
http://www.razor.dk | nose to another cat's tail. Also, a similar 
                    | operation on two strings.

signature.asc
Description: This is a digitally signed message part

[Prev in Thread]

Current Thread

[Next in Thread]

[Duplicity-talk] Unsafe(?) use of environment variable for storage of cleartext passphrase, Christian Joergensen <=

Prev by Date: [Duplicity-talk] Account Suspension Warning. Please Verify Ownership
Next by Date: [Duplicity-talk] Account Suspension Warning. Please Verify Ownership
Previous by thread: [Duplicity-talk] Account Suspension Warning. Please Verify Ownership
Index(es):
- Date
- Thread