Not storing passwords in cleartext
Robey Pointer
robey at lag.net
Sun Nov 20 02:41:59 GMT 2005
On 19 Nov 2005, at 8:57, Matthieu Moy wrote:
> So, we need a way to store the password outside the URL.
>
> The best way to do it is probably the way ssh private keys work. You
> can either store them in cleartext, or store them encrypted with a
> passphrase. Then, ssh-agent allows you to type your passphrase only
> once for each session.
>
> A simpler but less secure way is to use a ~/.authinfo or similar file.
> This is what I had implemented for baz (see
> http://wiki.gnuarch.org/AuthInfo).
+1
I think it should track url type too. I'm likely to have a different
password for my website and sftp, even though they use the same
machine name.
robey
More information about the bazaar
mailing list