On Thu, Oct 22, 2009 at 3:55 PM, elias r. <[email protected]> wrote: > > > Am 10/22/09 9:27 PM, schrieb Ted Unangst: >> >> On Thu, Oct 22, 2009 at 3:01 PM, elias r.<[email protected]> wrote: >>> >>> thank you :) >>> I'll update it later that day! >>> >>> one question: why did you choose tty over stdin? >>> would using stdin be a security flaw? >> >> As you discovered, making it read from tty makes it harder for people >> to put their put their password in a script, which is generally a good >> idea. > > is it? > how i above mentioned, there are several usecases for this. > and now, when the passphrase-file option is implemented, i don't think you > are right. > i think that there is another reason for not using RPP_STDIN.
"Passwords in files is generally bad idea" is not incompatible with "sometimes people think it's a good idea."
