From owner-freebsd-current Fri Aug 4 0: 1:33 2000 Delivered-To: freebsd-current@freebsd.org Received: from flood.ping.uio.no (flood.ping.uio.no [129.240.78.31]) by hub.freebsd.org (Postfix) with ESMTP id 1A3DD37B883; Fri, 4 Aug 2000 00:01:29 -0700 (PDT) (envelope-from des@flood.ping.uio.no) Received: (from des@localhost) by flood.ping.uio.no (8.9.3/8.9.3) id JAA40154; Fri, 4 Aug 2000 09:01:27 +0200 (CEST) (envelope-from des@flood.ping.uio.no) To: Kris Kennaway Cc: Peter Jeremy , current@FreeBSD.ORG Subject: Re: Loss of fetch(1) functionality with libfetch References: From: Dag-Erling Smorgrav Date: 04 Aug 2000 09:01:26 +0200 In-Reply-To: Kris Kennaway's message of "Thu, 3 Aug 2000 15:47:15 -0700 (PDT)" Message-ID: Lines: 19 User-Agent: Gnus/5.0802 (Gnus v5.8.2) Emacs/20.4 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Kris Kennaway writes: > On 3 Aug 2000, Dag-Erling Smorgrav wrote: > > Since ps(1) no longer allows users to view other users' processes' > > environment, I don't think it's a very big issue anymore. > This behavious is configurable - we shouldn't start relying on it at the > application level. I'm not relying on it - fetch(1) has always had the ability to specify passwords in environment variables. I'm just saying it's less of a problem than it was before. On a related note, I just suddenly remembered about .netrc. Libfetch ought to be able to read FTP logins and passwords from the user's .netrc. I also wonder if it might be meaningful to use .netrc for HTTP servers as well... DES -- Dag-Erling Smorgrav - des@flood.ping.uio.no To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message