WebApp Sec mailing list archives
Re: clear-text passwords in shell/perl scripts
From: Richard Moore <rich () westpoint ltd uk>
Date: Mon, 21 Mar 2005 13:38:14 +0000
Jeff Robertson wrote:
Can anyone either refute or provide further points in support of my stance on this?
I would say that file permissions are the only good way to protect the password here. That said, some sort of scrambling (even of a trivial ROT13 style) would prevent things like trivial shoulder-surfing when
someone who does have read permission looks at the source code. Rich. -- Richard Moore, Principle Software Engineer, Westpoint Ltd, Albion Wharf, 19 Albion Street, Manchester, M1 5LN, England Tel: +44 161 237 1028 Fax: +44 161 237 1031
Current thread:
- clear-text passwords in shell/perl scripts Jeff Robertson (Mar 20)
- Re: clear-text passwords in shell/perl scripts Joseph Miller (Mar 22)
- Re: clear-text passwords in shell/perl scripts Richard Moore (Mar 22)
- Re: clear-text passwords in shell/perl scripts Liran Cohen (Mar 22)
- Re: clear-text passwords in shell/perl scripts Paul Johnston (Mar 23)
- <Possible follow-ups>
- RE: clear-text passwords in shell/perl scripts Griffiths, Ian (Mar 22)
- RE: clear-text passwords in shell/perl scripts Ofer Shezaf (Mar 23)
- RE: clear-text passwords in shell/perl scripts M. Shirk (Mar 29)
- RE: clear-text passwords in shell/perl scripts Scovetta, Michael V (Mar 29)