[Martin Furter] > Attached is a log message and a patch which adds the new options > '--password-file' and '--password-envvar'.
I don't agree with --password-envvar. If we're going to support reading a password from the environment at all, just do what everyone always does with the environment: the application chooses the variable name and looks for it unconditionally; and if the user wants or doesn't want this, they can set or unset the variable. (As others have noted, we may or may not wish to support this at all, given that on some platforms a process environment is readable by other users.) Peter
