On Thu, Aug 03, 2000 at 01:26:01PM +0200, Dag-Erling Smorgrav wrote:
> Peter Jeremy <[EMAIL PROTECTED]> writes:
> > Whilst the environment is somewhat safer than the command line, I'd
> > still prefer not to have passwords embedded in environment variables.
>
> Since ps(1) no longer allows users to view other users' processes'
> environment, I don't think it's a very big issue anymore.
POLA says you should not have changed what fetch(1) expects from the
environmental var.
> > Has this feature been deliberately left out, or is it just one of the
> > bits that you haven't gotten around to implementing yet? Would you
> > be interested in patches to implement it?
>
> Sure. The only clean way of doing this (that I can think of) would be
> to add an interface to libfetch for registering password-prompting
> callbacks.
Then it should have been added -- especially before being MFC'ed.
--
-- David ([EMAIL PROTECTED])
Disclaimer: Not speaking for FreeBSD, just expressing my own opinion.
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-current" in the body of the message
