SlackwareThis Forum is for the discussion of Slackware Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Is there any way with the mailx mailrc config to hash the smtp-auth-password entry?
I can protect ~/.mail rc with permissions, but that still does not hash the actual password.
I have a use case where I would like to use a ~/.mailrc config but the system is multi-user and several people have root. Yes, a human trust issue, but nonetheless uncomfortable to hard-code a password in clear text on any system.
You can further diversify things and use encrypted password storage, since ArchLinux compiles in password agent support. To adjust the example, simply do not specify the password PASS token in $HOME/.netrc but instead uncomment the agent-shell-lookup line in the example account above.
I use mailx with msmtp (SMTP client, on slackbuilds.org) for sending out emails from the command line. Msmtp allows password storing methods other than plain text. In my case I created a password file that's encrypted using gpg. In the .msmtprc config file I set "passwordeval gpg -q -d ~/.email_pwd.gpg". This sets up the mail command to call gpg for handling the decryption and pulls the password from stdout of gpg.
Im not sure if/how to do it from the mailrc config directly though. Using msmtp, my .mailrc config is only contains "set sendmail=usr/bin/msmtp". Maybe someone else can chime in with a better idea but at least this setup isn't storing the password in plain text anywhere.
On reflection, while hashing prevents a "curious" workmate from learning my email account password, in my use case several users have root. Such a user could just su into my account. The hashing prevents learning the password but cannot prevent rogue behavior using my email account. I don't expect that to happen but we don't have good auditing configured on our systems. Yeah, I'm pushing tinfoil hat territory here.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
Such a user could just su into my account. The hashing prevents learning the password but cannot prevent rogue behavior using my email account. I don't expect that to happen but we don't have good auditing configured on our systems. Yeah, I'm pushing tinfoil hat territory here. 
