On Wed, Sep 14, 2011 at 01:27, John Beranek wrote:
> You can even do this in something like Perl, here you just modify '$0'.
>
I did not realize that the cli arguments are mutable.
--
Dotan Cohen
http://gibberish.co.il
http://what-is-what.com
___
Cen
On 12/09/2011 03:37, Devin Reade wrote:
> Getting back to the original question, it is a feature of mysql (not
> of CentOS per se), but there's nothing that stops other (C) programs
> from doing something similar. Shortly after startup, a programmer can
> set things up so that command line argumen
On Tue, Sep 13, 2011 at 18:42, Craig White wrote:
> I'm sorry, I was trying to make a point about the methodologies employed to
> better enhance security **especially** when you have other users on the same
> system... the point is that you should never use any command line function
> that incl
On Sep 13, 2011, at 2:36 AM, Dotan Cohen wrote:
> On Mon, Sep 12, 2011 at 23:25, Craig White wrote:
>> create a proper .my.cnf file - problem solved
>>
>
> There are other users who have root access (yes, I know, bad idea but
> it's not my box) who I don't want playing around in the mysql cli
On Mon, Sep 12, 2011 at 23:25, Craig White wrote:
> create a proper .my.cnf file - problem solved
>
There are other users who have root access (yes, I know, bad idea but
it's not my box) who I don't want playing around in the mysql cli (I'm
being a bully here, I know, but they are PHP guys). They
On Sep 12, 2011, at 11:58 AM, Dotan Cohen wrote:
> On Mon, Sep 12, 2011 at 03:30, Craig White wrote:
>> not exactly sure what point you are trying to make about being
>> compromised - not all that relevant but you can still just use -p option
>> without the password and get prompted for the pass
On Mon, Sep 12, 2011 at 05:37, Devin Reade wrote:
> Getting back to the original question, it is a feature of mysql (not
> of CentOS per se), but there's nothing that stops other (C) programs
> from doing something similar. Shortly after startup, a programmer can
> set things up so that command l
On Mon, Sep 12, 2011 at 03:30, Craig White wrote:
> not exactly sure what point you are trying to make about being
> compromised - not all that relevant but you can still just use -p option
> without the password and get prompted for the password which actually
> solves your question.
>
The passw
Getting back to the original question, it is a feature of mysql (not
of CentOS per se), but there's nothing that stops other (C) programs
from doing something similar. Shortly after startup, a programmer can
set things up so that command line arguments (or in this case one of
them) is hidden from
On Sun, 2011-09-11 at 19:56 +0300, Dotan Cohen wrote:
> On Sun, Sep 11, 2011 at 19:35, Craig White wrote:
> > you'd still have it in bash_history though so it's really a poor idea to
> > ever pass a significant password directly on the command line execution
> > - whether visible or not visible to
On Sun, Sep 11, 2011 at 19:35, Craig White wrote:
> you'd still have it in bash_history though so it's really a poor idea to
> ever pass a significant password directly on the command line execution
> - whether visible or not visible to ps. Much better is to be prompted
> for the password instead.
On Sun, 2011-09-11 at 19:32 +0300, Dotan Cohen wrote:
> I just noticed that some CentOS 4 or 5 machine that I don't admin but
> have root access to hides MySQL passwords from ps:
>
> Console 1:
> $ mysql -u root -pSECRET
> mysql >
>
> Console2:
> # ps aux
> root 32165 0.0 0.1 109408 2204 p
I just noticed that some CentOS 4 or 5 machine that I don't admin but
have root access to hides MySQL passwords from ps:
Console 1:
$ mysql -u root -pSECRET
mysql >
Console2:
# ps aux
root 32165 0.0 0.1 109408 2204 pts/1Ss+ 11:19 0:00 mysql
-u root -px xx
That is re
13 matches
Mail list logo
