Re: Performing archives from a script
1999-01-06 14:54:29
> If you wish to keep the password secure but need to give people access to
> the scripts to update filesystems etc etc you can do something similar to
>
> dsmc archive blahdeblah -pass=$(cat passwordfile)
>
> passwordfile is a file containing one word, the password!
>
> and make the scripts accessable to whoever needs to edit them, and the
> passwordfile accessable only to root. As ADSM runs as root everything should
> be hunky dory.
I would have serious qualms about the mechanism outlined above, since allowing
someone to edit scripts that will be run with root authority is almost
equivalent to telling him or her the root password in terms of the security
exposure it introduces.
|
|
|