Jump to content
Not connected, Your IP: 34.204.183.113
peldx

Hummingbird Suggestion

Recommended Posts

Posted ... (edited)

An interactive way to put in the username and password; shell history is also a concern, so it'd hopefully mitigate this as well.
Currently if you have a password which contains delimiters, as in a bunch of random symbols, you can't use the password since the shell will make the command not execute.
You could use a tool on your own to overwrite the shell history file with random contents at least 3 times, zero the file out then delete, and recreate the file with touch to ensure there's no errors with the shells that complain about there being no history file.

Edited ... by peldx
Less confusing.

Share this post


Link to post
1 hour ago, peldx said:

Shell history is also a concern; you can use a tool to overwrite the history file with random contents at least 3 times, zero the file out then delete, and recreate the file with touch to ensure there's no errors with some shells.


The software should tell the shell that a password is given. Then it won't be logged. To me your suggestion would be a desaster if Hummingbird would do so just like that. I've got my backups, that's not the thing. But I think any software shouldn't touch files other than their own unless the user explicitly wants the software to touch others, and it seems it's generally how file interactions are handled by convention, even on Windows.

Four simple things:
There's a guide to AirVPN. Before you ask questions, take 30 minutes of your time to go through it.

Amazon IPs are not dangerous here. It's the fallback DNS.
Running TOR exits is discouraged. They're subject to restrictions on the internet and harm all AirVPN users.

Furthermore, I propose that your paranoia is to be destroyed. If you overdo privacy, you'll be unique among the mass again.

 

XMPP: gigan3rd@xmpp.airvpn.org or join our lounge@conference.xmpp.airvpn.org

Share this post


Link to post
5 minutes ago, giganerd said:

The software should tell the shell that a password is given. Then it won't be logged. To me your suggestion would be a desaster if Hummingbird would do so just like that. I've got my backups, that's not the thing. But I think any software shouldn't touch files other than their own unless the user explicitly wants the software to touch others, and it seems it's generally how file interactions are handled by convention, even on Windows.
I didn't intend to suggest that as a feature for Hummingbird, I was saying it as a thing you could do on your own to mitigate having shell history of your password.

Share this post


Link to post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
  • Security Check
    Play CAPTCHA Audio
    Refresh Image

×
×
  • Create New...