diff options
author | appeasementPolitik <108810900+appeasementPolitik@users.noreply.github.com> | 2022-09-20 11:42:54 +0000 |
---|---|---|
committer | GitHub <noreply@github.com> | 2022-09-20 11:42:54 +0000 |
commit | 7871fd80b29afa3fbab9bbecd6092b303b07c29f (patch) | |
tree | 5168b08ad477efebed7df3bbb5020ff75cf43140 /%25253fid%25253d46050193fc2788ae22972c3d44de767a7d4db936%253fid%253de014987bf08a9ff668f1db5b57444bae2ee64bba%3fid%3de014987bf08a9ff668f1db5b57444bae2ee64bba?id=7871fd80b29afa3fbab9bbecd6092b303b07c29f | |
parent | ae0ad289a10e0cd911489ce08f8d0fed6332d348 (diff) |
Make otp script more secure + other improvements (#1190)
Make a temporary directory in $XDG_RUNTIME_DIR instead of $PASSWORD_STORE_DIR.
$XDG_RUNTIME_DIR defaults to /run/user/$uid/. This directory has the security advantage of only being readable and writable by the current user and being mounted in RAM, causing the screenshot to be fully wiped on shutdown and not needing shred, which doesn't work reliably on SSD's.
Also quoted $dir, for the off chance someone has spaces in their $PASSWORD_STORE_DIR.
Removed the check for xclip and the $issuer and $name variables, as they are unused.
If you're wondering why echo is piped into dmenu, on my system dmenu hung when called without the pipe, causing the whole script to freeze.
Diffstat (limited to '%25253fid%25253d46050193fc2788ae22972c3d44de767a7d4db936%253fid%253de014987bf08a9ff668f1db5b57444bae2ee64bba%3fid%3de014987bf08a9ff668f1db5b57444bae2ee64bba?id=7871fd80b29afa3fbab9bbecd6092b303b07c29f')
0 files changed, 0 insertions, 0 deletions