|
From: | Michael Baierl |
Subject: | Re: [Duplicity-talk] Setting the PASSPHRASE inside the duplicity program itself |
Date: | Tue, 27 Mar 2007 08:48:22 +0200 |
User-agent: | Thunderbird 1.5.0.10 (Windows/20070221) |
Yep,if someone has root access to read your cron entries (s)he can also read the files in /usr/bin/ without any problem. Overall putting the password into the code just makes it harder for you to upgrade the program - everytime you have to think about also modifying the source. There is a reason to separate code and configuration!
Mike Charles Duffy wrote:
Be sure you aren't operating under the impression that the steps you're taking buy more security than they actually do.
-- Michael Baierl mbaierl.com http://mbaierl.com/
[Prev in Thread] | Current Thread | [Next in Thread] |