[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [msmtp-users] Password parameters patch

To: msmtp-users@lists.sourceforge.net
Subject: Re: [msmtp-users] Password parameters patch
From: Martin Lambers <marlam@...23...>
Date: Tue, 3 Jul 2012 06:59:11 +0200
In-reply-to: <CAD2Ti2_MDLAJ+n5vpjCTkcPAJvJ9Hx-a+xHNMYPuw6jfwp9wuA@...26...>
List-archive: <http://sourceforge.net/mailarchive/forum.php?forum_name=msmtp-users>
List-help: <mailto:msmtp-users-request@lists.sourceforge.net?subject=help>
List-id: "General discussion, questions & answers" <msmtp-users.lists.sourceforge.net>
List-post: <mailto:msmtp-users@lists.sourceforge.net>
List-subscribe: <https://lists.sourceforge.net/lists/listinfo/msmtp-users>, <mailto:msmtp-users-request@lists.sourceforge.net?subject=subscribe>
List-unsubscribe: <https://lists.sourceforge.net/lists/listinfo/msmtp-users>, <mailto:msmtp-users-request@lists.sourceforge.net?subject=unsubscribe>
References: <20120702140823.GB995@...20...> <20120702184208.27471786@...292...> <20120702184122.GA29859@...20...> <CAD2Ti2_MDLAJ+n5vpjCTkcPAJvJ9Hx-a+xHNMYPuw6jfwp9wuA@...26...>

On Mon, 2 Jul 2012 16:48:19 -0400, grarpamp wrote:
> Isn't it possible for the program to rewrite its
> own argv0 and/or parameters that would show
> up in ps/proc/etc when accessed by other uid's?
> But that may be subject to determination by race.

Yes, this is possible to some extent, but I'm not sure if we can really
remove all traces of the original command line from the system
records, and as you said there will be a race condition.

There was a --password option originally but it was removed in
version 0.5 (ca. 2003) for these reasons.

> So also, examine the -h and -H options used in pw here:
> http://svnweb.freebsd.org/base/releng/9.0/usr.sbin/pw/

As far as I can see, you can do the same with the --passwordeval
option. -H/-h directly get the file descriptor of the pipe whereas
--passwordeval creates a pipe to read the output of the given command.

Martin

Follow-Ups:
- Re: [msmtp-users] Password parameters patch
  - From: grarpamp <grarpamp@...20...>

References:
- [msmtp-users] Password parameters patch
  - From: Ambrevar <ambrevar@...20...>
- Re: [msmtp-users] Password parameters patch
  - From: Martin Lambers <marlam@...23...>
- Re: [msmtp-users] Password parameters patch
  - From: Ambrevar <ambrevar@...20...>
- Re: [msmtp-users] Password parameters patch
  - From: grarpamp <grarpamp@...20...>

Prev by Date: Re: [msmtp-users] Password parameters patch
Next by Date: Re: [msmtp-users] patch to ignore comments, and broken build
Previous by thread: Re: [msmtp-users] Password parameters patch
Next by thread: Re: [msmtp-users] Password parameters patch
Index(es):
- Date
- Thread