best practice for shell scripting

Alan Schmitt alan.schmitt at polytechnique.org
Tue Jan 26 10:57:24 UTC 2021


On 2021-01-26 12:05, "Amir Yalon" <quoiceehoh-20180826 at yxejamir.net> writes:

> On Tue, 26 Jan 2021, at 11:15, Frank Grüllich wrote:
>> Injecting it via env var is *slightly* more secure.
>
> If you can switch from using a password to using a bearer token, then
> the slightly even more secure option is
> https://rclone.org/webdav/#webdav-bearer-token-command:
>
>     rclone sync --webdav-bearer-token-command "pass show path/to/webdav/token" …
>
> People who don’t use password managers still make the distinction
> between a memorisable “password” and a random string “token”, and
> design a different interface for each of them. 🤷

Unfortunately I don't think this is possible. But thanks a lot for the
suggestion.

Best,

Alan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 528 bytes
Desc: not available
URL: <http://lists.zx2c4.com/pipermail/password-store/attachments/20210126/2907169d/attachment.sig>


More information about the Password-Store mailing list