[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Duplicity-talk] duply shows sensitive data in process listing

From: edgar . soldin
Subject: Re: [Duplicity-talk] duply shows sensitive data in process listing
Date: Tue, 05 Jan 2010 15:56:10 +0100
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv: Gecko/20091204 Thunderbird/3.0

I will modify duply accordingly. Still:

a) Wouldn't it make sense to do the same for the username?
b) Also, shouldn't the FTP_PASSWORD be made deprecated and a env var called URL_PASSWORD or BACKEND_PASSWORD be introduced if the variable works for all backends?

.. ede

On 04.01.2010 13:17, Kenneth Loafman wrote:
address@hidden wrote:
But what about the others? .. ede

All of the protocols except S3 should take the password from the
environment variable FTP_PASSWORD, however, if the user specifies it in
the URL, I don't know a way to obscure it from ps and friends.


Duplicity-talk mailing list

reply via email to

[Prev in Thread] Current Thread [Next in Thread]