I have a whole series that I need to run on login, many of which require root privileges, therefore, To save some steps I put them in an apple script so that I had to open the terminal.
But still, I want to be able to do this without entering my password (I am still sleeping when I start to boot my machine). So I thought, why not just submit your admin password to the keypain and use the script which is the key
but it just feels wrong, the administrator in the keypain is accumulating password ...
So, what are your thoughts? Is this an acceptable way to allow my program? If applescript is not secure enough, then I could easily do this with a simple cocoa app.
I do this myself, I store an administrator password for other computers so I use applescript script I can share an automatic mount on my LAN. In my opinion, if a keychain is secure enough to keep any password, then all the passwords must be secure enough to keep it. The password is never clear, so I do not see any problem.
Of course, there is always a security risk when a person has direct access to your computer, they can run an applescript to pull their password outside the keychain if they know the name of that key Where it's stored and they're reaching the keychain with your administrator account. But if someone has so much access, then your computer is not safe.
Comments
Post a Comment