Re: [dev] [ANNOUNCE] slock-1.3

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

From: hiro <23hiro_AT_gmail.com>
Date: Mon, 15 Feb 2016 13:47:51 +0100

#!/bin/sh
capture-all-keyboard-shit-and-show-stupid-rainbows |
while read line
do
if [ "$line" = `cat pass` ]
then
killall capture-all-keyboard-shit-and-show-stupid-rainbows
else
mpg123 fart.mp3
fi
done

Tried to fit passwd hashing in there, but it would need something that
ensures sha1sum gets eof after one line and echo passwd | sha1sum is
insecure. Easier in C.

I personally don't need this password to be hashed. It's more
important to have multiple passwords for different escalations than to
have hashing. Chmod 700 is enough for my purposes.

On 2/15/16, Kamil Cholewiński <harry666t_AT_gmail.com> wrote:
>> slock < password-file
>
> You now have a password in cleartext, which we know is a bad idea. It
> would be better to hash it. Congrats, /etc/passwd & friends reinvented.
>
Received on Mon Feb 15 2016 - 13:47:51 CET

This archive was generated by hypermail 2.3.0 : Mon Feb 15 2016 - 14:00:07 CET