On Sun, Jun 29, 2008 at 12:23:27AM +0200, Michael Lechtermann wrote: > Hi, > > currently I am writing a script to automount encrypted vnconfig partitions > (using hotplugd) when I insert an USB stick. The saltfile is on the USB > stick, so basically there is no need to manually enter the encryption key if > only I got access to the USB stick. > > To be able to do that I need to supply the encryption key to vnconfig in some > way, so I added the -p option. > > Normally this wouldn't be a good idea, but in cases like mine the security > issues should be minimal to zero, especially since -p only works when also > using -K and -S. > > What do you think?
Someone will remove your head from your body, i think ;). You can pipe a password into vnconfig, if you block it from opening /dev/tty, eg. with systrace.
