[Spacewalk-list] Encrypting admin username and password of spacewalk server
David Rock
david at graniteweb.com
Fri Sep 8 14:32:26 UTC 2017
> On Sep 8, 2017, at 08:25, Matt Moldvan <matt at moldvan.com> wrote:
>
> One option is to keep the username and password in /etc/rhn/spacewalk.creds or something, which only the user running your script has access to, and the file has very restrictive permissions on. In there, you can specify your username and password and then source it from your script.
>
That’s how I do it. All my API scripts are configured to take a -c <configfile> command line option that can be fed for automated scripts.
As mentioned, storing an encrypted password isn’t any better than storing it plaintext; you can read the script code to decrypt the password.
—
David Rock
david at graniteweb.com
More information about the Spacewalk-list
mailing list