non plain text password support for environment variable?

[emoxam]

Does PBS_PASSWORD support any non-plain text passwords ? Need to store a password hashed.
Thanks

 

[fabian]

you (or rather, the client) can't login with a hash of the password, so no.

 

[emoxam]

thats bad, can it be implemented in a future versions ?

 

[fabian]

it's not bad, and it's unavoidable - when the client wants to login at the server, it needs to present some secret that grants it access. storing passwords hashed only helps on the server side in case of a compromise, not on the client side..

 

[emoxam]

what's stopping use somthing kind of smbpasswd -a
when we only once use plain text password, all the rest time we use hash. It can be usefull in some cases.

 

[fabian]

that's not how password-based authentication works - there are other approaches but all of them rely on some sort of secret value (password, key, token value, ..) being available at the client side to prove the client is who they say they are, this is not avoidable.