Date: Thu, 9 Sep 2004 15:17:39 +0100 From: "R. W." <list-freebsd-2004@morbius.sent.com> To: freebsd-geom@freebsd.org Subject: Re: Attaching two gbde partitions with the same password Message-ID: <200409091517.39846.list-freebsd-2004@morbius.sent.com> In-Reply-To: <20040907082311.GI34157@afields.ca> References: <200409050234.13571.list-freebsd-2004@morbius.sent.com> <20040907080941.GH34157@afields.ca> <20040907082311.GI34157@afields.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tuesday 07 September 2004 09:23, Allan Fields wrote: > Add lines below to the examples (in case $pass hangs around.) > > On Tue, Sep 07, 2004 at 04:09:41AM -0400, Allan Fields wrote: > > The only issue with reading in passwords from a shell script is to > > not echo to the tty. There are ways around this problem such as: > > > > In bash you can use: > > read -esp "Enter passphrase: " pass > > gbde attach $dev -l $lck -p $pass > > gbde attach $dev2 -l $lck2 -p $pass > pass=`head -c1024 /dev/urandom`; unset pass > > > otherwise: > > tmp=`stty -g`; stty -echo > > read -p "Enter passphrase: " pass > > echo; stty $tmp > > gbde attach $dev -l $lck -p $pass > > gbde attach $dev2 -l $lck2 -p $pass > pass=`head -c1024 /dev/urandom`; unset pass > > > You could put this into your rc.early or something similarly early > > in the boot sequence if it suits your needs. (For security reasons > > passing the passphrase on the command line should be done before > > going multiuser.) Thanks for your help. If I'm the only user, and I have no remote access enabled, do I gain much by attaching before going multiuser? > pass=`head -c1024 /dev/urandom`; unset pass I don't think this line works as intended. I had a quick look at the bash source, and it looks as if it allocates memory for the new string, and frees the old one.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200409091517.39846.list-freebsd-2004>