[rancid] Can clogin prompt for a password?

Alan McKinnon alan.mckinnon at gmail.com
Thu Aug 4 15:46:29 UTC 2016


On 04/08/2016 16:58, Brandon Ewing wrote:
> Greetings,
> 
> Historically, I've often used clogin to execute command snippets and other
> tasks on large amounts of routers.  However, now I'm in a position where we
> are using central authorization that utilizes our domain credentials.

are the admins of that central system willing to give you a rancid
system account? That's usually a routine corporate request and can be
locked down in a way that will satisfy the auditors

> Since I'd prefer not to keep my domain password in a text file on a box that
> other people have root on, is it possible for clogin (or par) to prompt for
> a password at initial execution, instead of relying on storing the cleartext
> password on disk, or exposing the password in a history file?

A system account makes all these problems go away, or makes them irrelevant


-- 
Alan McKinnon
alan.mckinnon at gmail.com



More information about the Rancid-discuss mailing list