Comments (5)
Environment variables are considered to be safe on most Linux systems.
Environment variables definitely aren't considered safe for storing secrets as they leak as easy as command args i.e. with ps ewwax
. I advice to not introduce new options that may work as footgun for inexperienced users. Using stdin
should be the safe approach.
from yubikey-personalization.
Any thoughts on this @klali ?
Looking at ykchalresp.c
it should be trivial to add.
from yubikey-personalization.
Yeah, it should be fairly easy to add. In #73 we added support for reading the challenge from a file (or STDIN). Maybe that solves the same usecase?
from yubikey-personalization.
@klali Not really.
I'm a fan of the trifecta of options being available from the command line, environment and config files.
So unless there are objections, I'll whip up a patch to read the challange from YKCHAL
.
from yubikey-personalization.
No objections at all.
On Sep 30, 2016 11:06, "Thordur Bjornsson" [email protected] wrote:
@klali https://github.com/klali Not really.
I'm a fan of the trifecta of options being available from the command
line, environment and config files.So unless there are objections, I'll whip up a patch to read the challange
from YKCHAL.—
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub
#49 (comment),
or mute the thread
https://github.com/notifications/unsubscribe-auth/AAQI3bKZYZ7tasXbjbppnkNB_AjAYBBQks5qvNEngaJpZM4CoHB0
.
from yubikey-personalization.
Related Issues (20)
- Fails to build with gcc 10 in Fedora 32 HOT 4
- multiple potential memory leaks
- infinite loop for particular command line arguments
- YubiKey index is not stable HOT 6
- fg
- Blink LED when waiting for touch HOT 3
- 1.20.0 + master: autoreconf and compile time warnings
- compatiblility with google-authenticator? HOT 4
- Key is not fully recognized on coldplug
- Warning about setting mode should be updated HOT 1
- yk_open_key causes the keyboard HID interface to reset
- Support for Apple Silicon - Cross Compile to ARM64 HOT 3
- ykchalresp returns the same response for 2 different challenges HOT 6
- Invalid fixed string
- Cannot remove OTP locking code
- Messed up conf: keypress gives me 32 chars instead of 44
- YubiKey C Bio - FIDO Edition is not recognized by YubiKey Personalization Tool. HOT 1
- Text is hard to read under dark theme in KDE HOT 1
- configure: error: libyubikey v1.5+ not found, see https://developers.yubico.com/yubico-c/ HOT 1
- Yubikey core error: no yubikey present
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from yubikey-personalization.