One of my machine's at work runs Debian and of course I'm sitting behind a proxy. apt-get won't run properly when it's sitting behind a proxy, so I used my google powers and found a workaround by setting either the http_proxy or ftp_proxy environmental variable:
export http_proxy=http://username: password@server: port
export ftp_proxy=http://username: password@server: port
(no spaces between : and p. I had to edit that because it was giving
faces instead, lol)
Then apt-get will install programs without complaints. However, I'm wondering how large of a security issue this is. For one, if I leave my workstation and forget to lock my screen then anyone can come up and type env and see my naked username and password. But what about the risk of someone snooping my machine across the network and finding out what env vars I have set?
For now I've only been using apt-get when I absolutely need a certain program installed, and when I do that I set my proxy env vars, call apt-get, and then immediately remove the env vars. Is there a better/more secure way to get around my proxy without exposing my account information? Thanks.