On 01/07/2009 08:55, "Ashwin Patil" <email@hidden> wrote:
>
>
> "hdiutil compact -stinpass /Volumes/Images/test.sparseimage <
> /Volumes/Images/passwordfile.txt"
>
> It work as expected but we need to maintain the password in plain text in
> the passwordfile.text. But however it solved my task to complete.
>
> Thanks to all, any way please post if any secure method instead of maintains
> the password file.
>
Hi Ashwin,
there's a clear case of the chicken and the egg there. Let's say you store
your password in an encrypted fashion, say in the keychain. How does your
script get access to the password? By having access to the keychain, which
means it needs to be told what they keychain password is....oh. You still
need to give it a password.
You could obfuscate the password stored on disk, but then anyone who can see
the crontab can see how to recover the password. Your choices really are to
give the password text file the minimum FS permissions required to work (and
choose how to secure physical access to the system/HDD as you see fit), or
not automate this task.
Cheers,
Graham.
--
Graham Lee
Senior Mac Software Engineer
tel: +44 1235 540266
SOPHOS - simply secure
Sophos Plc, The Pentagon, Abingdon Science Park, Abingdon, OX14 3YP, United Kingdom.
Company Reg No 2096520. VAT Reg No GB 348 3873 20.
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden
This email sent to email@hidden
