Subject: Re: Cautionary Tale: New Install/root Password/Keyboard Layout
To: None <netbsd-users@netbsd.org>
From: David Laight <david@l8s.co.uk>
List: netbsd-users
Date: 07/04/2003 21:35:09
> You never pass sensitive data as an argument to a command nor do
> you put it into an enviroment variable. Use the `here-document`
> feature of your shell.
Mmmm ps -eww
With many shells 'here documents' get written to temporary files
so could easily be exposed to other users.
This is made worse by buggy shells that fail to delete them [1].
David
[1] mainly because it is just too hard to get right if you start
playing with shell functions and sub-shells.
--
David Laight: david@l8s.co.uk