| ... | @@ -21,10 +21,10 @@ All commands are private. Commands recorded on behalf of a user are only accessi |
... | @@ -21,10 +21,10 @@ All commands are private. Commands recorded on behalf of a user are only accessi |
|
|
Bashhub currently generates each user a unique identification token which is passed with each user request to validate a user's actions. This token is necessary to perform any actions on behalf of a user for the command api.
|
|
Bashhub currently generates each user a unique identification token which is passed with each user request to validate a user's actions. This token is necessary to perform any actions on behalf of a user for the command api.
|
|
|
|
|
|
|
|
#### Sensitive Information
|
|
#### Sensitive Information
|
|
|
Bashhub saves a copy of a command exactly as it's recorded in your history. Credentials which are recorded via a prompt (e.g. default ssh and postgres) are **not** recorded. Only if you plain text a password as part of a command will it be recorded. For example:
|
|
Bashhub saves a copy of a command exactly as it's recorded in your history. Credentials which are recorded via a prompt (e.g. like default ssh and postgres) are **not** recorded. Only if you plain text a password as part of a command will it be recorded. For example:
|
|
|
|
|
|
|
|
```bash
|
|
```bash
|
|
|
$ mysql -u bob -p plain-text-password # This is overall bad practice.
|
|
$ mysql -u bob -p plain-text-password # This is bad practice in general.
|
|
|
```
|
|
```
|
|
|
Good practice is to not plain text user information and have it stored else where e.g.
|
|
Good practice is to not plain text user information and have it stored else where e.g.
|
|
|
|
|
|
| ... | | ... | |
