Query passwords with 'read -r'

'read' without '-r' interprets escape sequences, so it may not behave properly if the password contains literal backslashes (depending on the next character).
2025-01-23 21:21:07 -05:00 · 2022-01-02 13:05:47 +00:00 · 2022-01-02 13:05:47 +00:00 · cf460ca6a5
commit cf460ca6a5
parent e7e21d47b9
2 changed files with 2 additions and 2 deletions
--- a/user/how-to-guides/backup-emergency-restore-v4.md
+++ b/user/how-to-guides/backup-emergency-restore-v4.md
@ -111,7 +111,7 @@ Emergency Recovery Instructions
    required, it will be handy later and will avoid saving the passphrase in
    the shell's history.

-        [user@restore ~]$ read backup_pass
+        [user@restore ~]$ read -r backup_pass

 3. Verify the integrity of `backup-header`. For compatibility reasons,
    `backup-header.hmac` is an encrypted *and integrity protected*
--- a/user/security-in-qubes/yubi-key.md
+++ b/user/security-in-qubes/yubi-key.md
@ -72,7 +72,7 @@ To use this mode you need to:
    (This way your password will not leak to the terminal command history file.)

    ```
-    read password
+    read -r password
    ```

    Now run the following command to calculate your hashed password.