security - Obfuscating password in batch script -

-

i have batch script password sitting in part of command requires credentials not want prompt credentials. not worried external threats, don't want co-worker going in there , seeing password. while trust them not abuse it, i'd rather not have there @ all.

i able pretty powershell storing secure string in text file. pretty basic, @ least there's no plain text passwords laying around. that's need.

how can obfuscate password in batch script?

you hide password in alternate data stream:

first, add secret password alternate data stream of script:

echo somewhatsecretpassword>script.bat:pwd

here's how retrieve password variable %p%:

for /f "usebackq delims=" %i in (script.bat:pwd) set p=%i

from within batch file may use like:

for /f "usebackq delims=" %%i in (%~0:pwd) set p=%%i

this not secure!

please consider:

  • this not secure!
  • alternate data streams not copied everywhere (fat)
  • passwords containing special characters may need escaped in order written correctly stream
  • ... not secure

Comments

Post a Comment

Popular posts from this blog

Unable to remove the www from url on https using .htaccess -

-
i want remove www site url. ie. https://www.domainname.com.au https://domainname.com.au . i have tried various .htacces code nothing work me. here present code remove www http not work https. rewriteengine on rewritebase / rewritecond %{http_host} ^www\.(.*)$ [nc] rewriterule ^/(.*)$ http://%1/$1 [r=301,l] rewritecond %{https} off rewriterule ^(.*)$ https://domainname.com.au/$1 [r=301,l] rewriterule ^code-of-conducts/(.*)/$ code-of-conducts.php?type=$1 rewriterule ^parents/post-a-job/(.*)/edit/$ parents/post-a-job.php?action=edit&id=$1 rewriterule ^parents/post-a-job/(.*)/$ parents/post-a-job.php?job_type=$1 rewriterule ^parents/open-jobs/(.*)/delete/$ parents/open-jobs.php?action=delete&id=$1 rewriterule ^parent-profile/(.*)/$ parent-profile.php?id=$1 rewriterule ^parents/job-details/(.*)$ parents/job-details.php?applied_id=$1 rewriterule ^sitterprofile/(.*)/$ sitterprofile.php?id=$1 rewriterule ^sitter/job-board/state/(.*)/page/(.*)/$ sitter/job-board.ph...
Read more