I found the three available options for specifying a password in the course of running update-xxv a little bit cumbersome, so I want to share the following patch with you.

In addition to the default (no password), -a for being asked for it with _each_ database access (wtf) and specifying it on the command line in clear text using -p, I add a new option -A that asks for a password only once and supplies it to mysql as if it was given with -p.

This by itself will not raise overall system security as the password is still given to each mysql call on the command line (and thus can be seen in the process table), however, it’s better to not have it in .bash_history.

– Matthias
--- update-xxv.orig     2010-01-17 21:37:56.000000000 +0100
+++ update-xxv  2010-04-01 16:05:40.000000000 +0200
@@ -10,7 +10,8 @@
 #          -d <database>  : XXV database name (default: xxv)
 #          -u <user>      : Username (default: root)
 #          -p <password>  : Password (default: no password)
-#          -a             : Ask for password
+#          -a             : Ask for password (once every run of mysql)
+#          -A             : Ask for password (just once)
 #          -f             : Force upgrade, do not check version
 #          -v             : Display actual Version
 #          -h             : Help
@@ -45,6 +46,8 @@
     echo '-p <password>  : Password (default: no password)'
     echo '-s <sql-file>  : Upgrade sql script (default: upgrade-xxv-db.sql)'
     echo '-a             : Ask for password'
+    echo '-a             : Ask for password (once every run of mysql)'
+    echo '-A             : Ask for password (just once)'
     echo '-f             : Force upgrade, do not check version'
     echo '-v             : Display actual version'
     echo '-h             : Help'
@@ -251,6 +254,9 @@
+       -A)
+           read -s -p 'Enter Password (hidden): ' password
+       ;;
vdr mailing list

Reply via email to