On 02/10/11 09:27 PM, akm wrote:
On Feb 9, 2:39 pm, Harald Schilly<harald.schi...@gmail.com> wrote:
e.g.
$ sage -notebook secure=True
ends up as
notebook(secure=True)
in the ipython interpreter.
Thanks for the quick response! I was looking for a way of adding the
adminpassword and hostname as options of the notebook command.
I may just edit run_notebook.py to pick up the host's name on the fly
and set the admin password similarly. My team's goal is to be able to
deploy sage using an automated tool such as Chef, removing the need
for any post-installation configuration.
Cheers
Supplying passwords on the command line is generally considered bad practice, as
these can be picked up with 'ps'.
That said, Sage is hardly designed with security in mind, so one could argue the
risk is small in comparison to other more serious security risks. But even so, I
don't think it would be a good idea to permit this to be passed on the command
line.
Since the password is stored as an md5 hash (I think), it would not be dangerous
to pass the hash on the command line. For instance if the password was "fred",
one could pass its hash
drkirkby@hawk:~$ echo fred | digest -a md5
08b622ddf7eb7c8e44cdb3bd6362f966
drkirkby@hawk:~$
with something like
sage --password_hash=08b622ddf7eb7c8e44cdb3bd6362f966
But someone has to implement it, and I doubt anyone would jump at doing that. It
would be seen as a low priority by most I think. But if you wanted to implement
it yourself...
--
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
A: Top-posting.
Q: What is the most annoying thing in e-mail?
Dave
--
To post to this group, send email to sage-support@googlegroups.com
To unsubscribe from this group, send email to
sage-support+unsubscr...@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/sage-support
URL: http://www.sagemath.org
