virtuoso isql's use of a command-line argument to specify the password is problematic for security. This means that user passwords are visible via "ps". It also means that orchestration systems that log command-lines have passwords in the logs. I'd really like to get away from this. I can (somewhat) hide the password by putting it in a file and utilizing `cat $dba_password_file` in scripts, but it's still visible via ps, and it's clunky. Is there any baked-in way to specify the password via a password file, environment variable, or other mechanism?
Hopefully such a thing already exists, and I just didn't find it. If not, feature request: please implement such a mechanism. [Or would you guys accept a patch to do this? I'm not much of a C coder, but I think I could handle something this trivial.] Note: this is currently under virtuoso open source version 7.1.0, under Linux. I'm sure we'll be upgrading to the most recent version shortly. But I don't see any changes to isql under the 7.2.0 release notes, so I'm assuming "upgrade to 7.2.0" won't solve my problems. The commercial version is not an option at this time. - Morty ------------------------------------------------------------------------------ Dive into the World of Parallel Programming The Go Parallel Website, sponsored by Intel and developed in partnership with Slashdot Media, is your hub for all things parallel software development, from weekly thought leadership blogs to news, videos, case studies, tutorials and more. Take a look and join the conversation now. http://goparallel.sourceforge.net/ _______________________________________________ Virtuoso-users mailing list Virtuoso-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/virtuoso-users
