Hi, On Thu, Aug 16, 2012 at 11:50:24AM -0500, Luis Mochan wrote: > I used to have my password in the .muttrc file; bad mistake (I found > out after mailing my rc file to this list). After introducing it > manually for awhile, I wrote it in a small file with restricted > permissions (set imap_pass='my_password') which I source > from the rc file (source ~/my/password/file). The password file is > onle readable and writable by me. This setup is convenient, as I don't > have to type my password every session, though that is not a big > inconvenience. Would this be considered unsafe?
You can surely do it this way. But, still, the file is in plaintext on the filesystem, which may be an attack vector. It all depends on your security needs. It would be a definitive no-go on a laptop with an unencrypted harddisk (but that does not seem to be the case for the OP, so it is off-topic here). Bye, Thomas > On Thu, Aug 16, 2012 at 06:36:11PM +0200, Thomas Wallrafen wrote: > > Hi, > > > > On Thu, Aug 16, 2012 at 06:29:42PM +0200, martin f krafft wrote: > > > also sprach Nicolas KOWALSKI <nicolas.kowal...@gmail.com> > > > [2012.08.16.1823 +0200]: > > > > ... > > > What do you do about the password? I don't want to store that in > > > .muttrc! > > > > You could enter the password manually, of course. > > > > For me, a small shell script is does the trick that decrypts a file via gpg > > and echoes the necessary config directives into mutt. > > > > Bye, > > > > Thomas > > -- > > o > W. Luis Mochán, | tel:(52)(777)329-1734 /<(*) > Instituto de Ciencias Físicas, UNAM | fax:(52)(777)317-5388 `>/ /\ > Apdo. Postal 48-3, 62251 | (*)/\/ \ > Cuernavaca, Morelos, México | moc...@fis.unam.mx /\_/\__/ > > O< ascii ribbon campaign - stop html mail - www.asciiribbon.org > > >
