On Mon, May 11, 2015 at 2:03 PM, Marc-Antoine Perennou < [email protected]> wrote: > > I don't really understand your comment about /proc/$PID/cmdline. Where > is it used? >
When you call "gpaste insert-password super-secret-password", everybody can see your password for a split second in "ps" output. > > GPaste has built-in support for managing password, so why would you > want to just nuke the whole history of the user instead of making use > of this feature? > Can it be used safely? > > Or what you mean is that passing the password as an argument is the > problem? If this is the problem, I don't see how "echo password | > xclip" is any better. > echo is a bash built-in, and thus its arguments will not show up in /proc/*/cmdline, as it does not spawn a new process.
_______________________________________________ Password-Store mailing list [email protected] http://lists.zx2c4.com/mailman/listinfo/password-store
