-
Notifications
You must be signed in to change notification settings - Fork 175
Why there's no password management? #3
Comments
You should really give ssh keys a try. Here's a primer: https://help.ubuntu.com/community/SSH/OpenSSH/Keys Since that's long, I'll provide a TL;DR:
From there, you can normally play around with I know it's a little complicated, as I used to use passwords everywhere too. But it scales in the long run, goes great with automation (think deployments and backups), and is the standard with popular systems like AWS. -- Doug |
I know ssh keys are safer and better, but I have access to some servers that are no mine and my access was set with passwords, not keys, and I can't change it. |
thank you, happy to hear it :)
storm uses basically standart sshconfig files, and there is no support built-in for automatic logins with password authentication in ssh. I want to make storm simple so I don't want to get out of the scope of sshconfig files. moreover, storing passwords is always tricky since it comes with a lot of security concerns. I can't imagine a good way to implement this into storm at this time. maybe, I'm just missing something :) I use keys as @dmuth mentioned for like 15 servers and working good.
interesting case. normally, you should be able to set your key to your user's .authorized_keys if you can login. |
Take a look at https://pypi.python.org/pypi/keyring and sshpass: http://sourceforge.net/projects/sshpass/
I could do that to some servers, but there's one, specifically, where my user only has read access. I can't write/edit anything. All I can do is access the log files from webservices. |
okay, thanks for the links. I keep this issue opened and see what I can do for next releases. |
Using password managers of the operating system seems to be the proper way of storing passwords, storm would give up on being a manager for the
As with password managers of operating systems, |
This would be a great addition. I think the tool is great, but it's of little use when you have to type passwords every time. |
I have plans and ideas (including optional password management) for taking storm out from "ssh config wrapper" scope but that requires free time which I don't have nowadays. |
closed. |
First of all, this tool is awesome! Thank you very much! It's a life saver.
But I couldn't help myself wondering why there's no password management. Remembering all passwords from different connections is a pain and I think it could help a lot if storm could store them.
I don't know if Windows and Linux have a password management program, but Mac has the Keychain where all passwords, certificates, etc are stored. You could use one of these tools to persist the user's passwords.
The text was updated successfully, but these errors were encountered: