The other day I wrote a small Ruby app to check my finances on Mint.com.
intentions were to have this script run every once and a while and
information on my desktop (via a tool like Conky or GeekTool).
My problem is, how do I handle my password? Here are the two situations
- Use the command line to enter the password.
- Have the password stored in the script via some sort of encryption.
Neither of these seem very secure. In the first option, someone can
password via the “ps” utility, and in the second, someone could view the
code and figure it out.
Security isn’t a HUGE priority, as this account doesn’t really have
anything serious. Right now, I have the password in the file, encrypted
ROT13 (hah!), just to make it a little harder for someone skimming the
figure it out.
Any ideas on how to handle this situation?