The CMRUN is exposing the actual user id and password arguments in a ps -ef listing even if the calling script is using variables that are being read from a protected file. Has anyone been able to properly secure the password from being viewed in a process listing when CMRUN is run on Linux/UNIX systems?This message has been edited. Last edited by: Tamra,
Thanks for the quick response Waz! Your suggestion was attempted by placing them in the profile for the account running the command and it didn't work on our end. Where specifically do you place the suggested options? BTW - running SuSe Linux 11 and using version 8.0.08 Data Migrator server..
Note that CMRUN is a program compiled for each platform and can be run from the command line, or from a shell script or bat file. There's no need to call it from a focexec. So I don't quite follow Waz's comments.
It would be helpful to include an example of your script. It took me a bit to figure out what you are doing. If you don't wait for the flow to complete you won't see cmrun in the process listing. So I'm guessing you did something like this:
It does indeed show the command line with the password. However in the current production Release 7.7.07 (aka 8.1) you store the password in an external file which can be protected and refer to the file containing the password instead of the password. For example using a file in the current directory called "credentials" that contains the password:
I see that you are using WF Release 8.0 which is equivalent to DataMigrator Release 7.7.05 first available in January 2013. So that you can use this new functionality please upgrade to the current production Release 7.7.06 or 8.1.This message has been edited. Last edited by: Clif,
Posts: 373 | Location: New York City | Registered: May 03, 2007