On Wed, May 6, 2009 at 1:40 PM, Marcin Owsiany <[email protected]> wrote: > > On Wed, May 06, 2009 at 09:24:41AM -0500, Evan Hisey wrote: >> openssl passwd -crypt $passwd > [...] >> encrypted password so it will go over the wire encrypted. It will now > > But it will still show up unencrypted in processlist. > > -- > Marcin Owsiany <[email protected]> http://marcin.owsiany.pl/ > GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 > > "Every program in development at MIT expands until it can read mail." > -- Unknown > Only on the puppetmaster server, and this would happen no matter how you generate the password encryption. If somebody is that far inside your network already you have bigger problems. but if this is a concern just manually generate the encrypted password and change the command to "echo $passwd".
evan --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en -~----------~----~----~----~------~----~------~--~---
