[vox-tech] another tip: reading passwords in a shell script

[Ken Bloom]

On Sun, Dec 26, 2004 at 10:38:31PM -0800, Ken Bloom wrote:
> UC Davis has several services which have absolutely no relation to
> HTTP, but nevertheless require you to login over the web in order to
> take advantage of these services. Among these services are
> news.ucdavis.edu, and Moobilenet (the UC Davis wireless network).
> 
> Here's a simple script (that seems to work) to automate the login.
> 
> #!/bin/bash
> COOKIES_FILE=$(mktemp /tmp/cookies.XXXXXX)
> chmod 600 $COOKIES_FILE

There's a little trick I just discovered here that works quite nicely
with this script - for reading a password in a shell script without
echoing it on the screen

stty -echo #turn off echoing what is typed
echo -n "Password: "
read PASSWORD
echo #because that return that you typed at the end wasn't echoed
stty echo #turn on echoing what is typed


> curl --user username:password \
>    http://www-wls.ucdavis.edu/private/cgi-bin/wls.pl \
>    --location-trusted --cookie-jar $COOKIES_FILE
> rm -f $COOKIES_FILE
> 
> This one's targeted for moobilenet. Just change the URL for usenet.
> This supercedes any previous version using lynx that I've posted here
> before. Lynx just wasn't working for this one.
> 
> --Ken Bloom
> 
> -- 
> I usually have a GPG digital signature included as an attachment.
> See http://www.gnupg.org/ for info about these digital signatures.



> _______________________________________________
> vox-tech mailing list
> vox-tech at lists.lugod.org
> http://lists.lugod.org/mailman/listinfo/vox-tech


-- 
I usually have a GPG digital signature included as an attachment.
See http://www.gnupg.org/ for info about these digital signatures.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://ns1.livepenguin.com/pipermail/vox-tech/attachments/20041226/38e0a25c/attachment-0001.bin