Comments (4)
neil-rutherford
commented on May 10, 2024
1
Thanks for your input. I agree with you that backups are a good way to protect your data integrity.
However, on the off-chance someone failed to back up their passwords, a "game over" error could result from a bash one-liner: cd ~/pwd.sh && echo ":/" > pwd.sh.safe. I view this as a weakness in pwd.sh because such a crucial component can be corrupted so easily. My suggestion would be to change permissions using chmod, like so:
{START}
chmod +r+w pwd.sh.safe (Adds read and write permissions so pwd.sh can do its thing)
{OLD PWD.SH SCRIPT}
chmod -r-w pwd.sh.safe (Removes read and write permissions to thwart shenanigans)
{EXIT}
I've attached some logs from my terminal that show how changing permissions can hopefully make your program safer. Hope that helps!
demo.txt
from pwd.sh.
drduh
commented on May 10, 2024
1
Please try the new beta release and let me know what you think:
https://github.com/drduh/pwd.sh/releases/tag/2.0b
from pwd.sh.
mblumtritt
commented on May 10, 2024
The only thing what helps against ransomware is external backup and backup of the backups which are stored externally…
The described problem is not a problem of pwd.sh but of your data integrity. You should generally think about this and organize a working backup plan for your data.
from pwd.sh.
drduh
commented on May 10, 2024
Write protection and versioning/backups sound like great ideas. I'm already working on new features and will include your suggestions in an upcoming release. Thanks for sharing!
from pwd.sh.
Related Issues (20)
- GPG command not found HOT 3
- srm dependency not documented HOT 3
- License missing HOT 1
- Set umask HOT 1
- Use optional env variable for the safe path HOT 1
- Bash font color changes aren't reseted HOT 2
- Passphrase shows in 'ps' listing HOT 1
- Don't show created password HOT 7
- Delete and GPG HOT 10
- Security: unprotected unlocked vault? HOT 2
- Add context for password HOT 6
- Gist backup HOT 1
- command adds a 'mDoneB' at the end of the copied password HOT 2
- Final entry can't be removed HOT 3
- CAST5 as default cipher algorithm. HOT 1
- Pass the password as argument? HOT 2
- Spaces aren't allowed in safe passwords
- tr: Illegal byte sequence HOT 5
- add "-sel clip" to xclip? HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from pwd.sh.