URL:
<http://savannah.nongnu.org/bugs/?22049>
Summary: Enhancement: use the .netrc of current user to
access FTP authentication
Project: duplicity
Submitted by: None
Submitted on: Friday 01/18/2008 at 17:26 UTC
Category: None
Severity: 3 - Normal
Item Group: None
Status: None
Privacy: Public
Assigned to: None
Originator Email:
Open/Closed: Open
Discussion Lock: Any
_______________________________________________________
Details:
Passing the FTP authentication via environment variable potentially reveals
the password to local users, if the environment is visible in the process
list. An alternative to the environment variable would be to pass the
authentication information with an external file that has properly restrictive
permissions set.
The standard location for FTP authentication data is the .netrc file in users
home directory. This is easily accessible, because there is already a module
for parsing that file.
Attached to this submission is a preliminary patch outlining the basic
procedure. It does not do any error checking when the netrc parser fails, and
it overrides any user-submitted authentication with the netrc information if
found. For unattended backups it works quite well though.
_______________________________________________________
File Attachments:
-------------------------------------------------------
Date: Friday 01/18/2008 at 17:26 UTC Name: duplicity.patch Size: 1kB By:
None
Incomplete patch against 0.4.1
<http://savannah.nongnu.org/bugs/download.php?file_id=14829>
_______________________________________________________
Reply to this item at:
<http://savannah.nongnu.org/bugs/?22049>
_______________________________________________
Message sent via/by Savannah
http://savannah.nongnu.org/
_______________________________________________
Duplicity-tracker mailing list
[email protected]
http://lists.nongnu.org/mailman/listinfo/duplicity-tracker
