Most shells these days maintain a command history. Additionally, tools like sudosh store logs of sessions. It's not always an easy task ensuring any traces of the plaintext password have been fully erased from disk. Therefore, I consider it a security hole to require plaintext passwords on the command line.
Log in to post a comment.