Hello,
wget v1.53 has a small security issue.
when using wget like this
wget ftp://hello:password@host:21/*.mp3 -olog.log
The password is removed out of the logfile BUT when doing 'ps auxw'
it's visible to all users. I took a quick look thru the CHANGELOG file
but couldn't find anything that says it has been changed in 1.6
So perhaps you can take this with you in your futher development.
(Or perhaps it is already changed)
-- additional information.
I used wget v1.53 from the default debian package.
actual command that i used.
wget -b -o/root/wget.log -t0 -N -P/mnt/hdc/mp/
ftp://mynick:mypassword@myip:21/*.mp3
result with ps auxw
root 4637 0.0 0.3 1296 736 pts/0 S 16:08 0:00 wget -b
-o/root/wget.log -t0 -N -P/mnt/hdc/mp/ ftp://mynick:mypassword
Greetings Bjorn
