best practice for shell scripting

Alan Schmitt alan.schmitt at
Tue Jan 26 10:57:24 UTC 2021

On 2021-01-26 12:05, "Amir Yalon" <quoiceehoh-20180826 at> writes:

> On Tue, 26 Jan 2021, at 11:15, Frank Grüllich wrote:
>> Injecting it via env var is *slightly* more secure.
> If you can switch from using a password to using a bearer token, then
> the slightly even more secure option is
>     rclone sync --webdav-bearer-token-command "pass show path/to/webdav/token" …
> People who don’t use password managers still make the distinction
> between a memorisable “password” and a random string “token”, and
> design a different interface for each of them. 🤷

Unfortunately I don't think this is possible. But thanks a lot for the


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 528 bytes
Desc: not available
URL: <>

More information about the Password-Store mailing list