For the purpose of security, I think it would be
helpful to provide a way to specify the -u and -p
options using the shell environment. This way the
password and username will not show up in a shell
history or process listing.
Logged In: YES
What environment variable name would be good?
DAVFS_USER and DAVFS_GROUP?
Joseph Wayne Norton
Logged In: YES
I don't have any preference, but it might worthwhile to
emulate some other mounted-like filesystem.
Here is an excerpt from smbclient:
Sets the SMB username or username and
%pass is not specified, The user will be
The client will first check the USER
variable, then the LOGNAME variable and if
exists, the string is uppercased. Anything in
variables following a '%' sign will be
the password. If these environment variables
not found, the username GUEST is used.
If the password is not included in these
ment variables (using the %pass syntax),
will look for a PASSWD environment variable
which to read the password.
A third option is to use a credentials file
contains the plaintext of the username and
word. This option is mainly provided for
where the admin doesn't wish to pass the
tials on the command line or via environment
ables. If this method is used, make certain
the permissions on the file restrict access
unwanted users. See the -A for more details.
Be cautious about including passwords in
in the PASSWD environment variable. Also, on
systems the command line of a running
be seen via the ps command to be safe always
smbclient to prompt for a password and type