EPICS Home EPICS Controls Argonne National Laboratory

Experimental Physics and
Industrial Control System

Format page
for printing


Search Tech-talk
1994  1995  1996  1997  1998  1999  2000  2001  2002  2003  2004  2005  2006  2007  2008  2009  2010  2011  2012  2013  2014  2015  2016  2017  2018  2019  2020  2021  2022  2023  <20242025  Index 1994  1995  1996  1997  1998  1999  2000  2001  2002  2003  2004  2005  2006  2007  2008  2009  2010  2011  2012  2013  2014  2015  2016  2017  2018  2019  2020  2021  2022  2023  <20242025 
<== Date ==> <== Thread ==>
Subject: Re: Storing passwords in records/Authenticating IOC with other servers
From: Ralph Lange via Tech-talk <tech-talk at aps.anl.gov>
To: EPICS Tech Talk <tech-talk at aps.anl.gov>
Date: Fri, 19 Jul 2024 20:01:18 +0200
Plus...
If you do the caput on the command line, it will end up in the shell's history file.
If there's a Gateway involved, turning up debugging would make it appear in the log.
If some server in the chain (hopefully not the IOC) uses CAPutLog, it could appear in the log.

I have a milder use case for the OPC UA Security feature, as the credentials don't need to be dynamic (in the sense of being set by the operator across CA).
The Device Support (through a call in the startup script) reads them from a file and doesn't expose them anywhere. The assumption is that file access can be stripped down enough to ensure that only that one IOC instance has read access.

Cheers,
~Ralph

References:
Storing passwords in records/Authenticating IOC with other servers Marco Filho via Tech-talk
RE: Storing passwords in records/Authenticating IOC with other servers Freddie Akeroyd - STFC UKRI via Tech-talk
Re: Storing passwords in records/Authenticating IOC with other servers Yendell, Gary (DLSLtd, RAL, LSCI) via Tech-talk
Re: Storing passwords in records/Authenticating IOC with other servers Johnson, Andrew N. via Tech-talk
Navigate by Date:
Prev: Re: Storing passwords in records/Authenticating IOC with other servers Johnson, Andrew N. via Tech-talk
Next: EPICS Archiver Patel, Anjali Himanshukumar via Tech-talk
Index: 1994  1995  1996  1997  1998  1999  2000  2001  2002  2003  2004  2005  2006  2007  2008  2009  2010  2011  2012  2013  2014  2015  2016  2017  2018  2019  2020  2021  2022  2023  <20242025 
Navigate by Thread:
Prev: Re: Storing passwords in records/Authenticating IOC with other servers Johnson, Andrew N. via Tech-talk
Next: EPICS Archiver Patel, Anjali Himanshukumar via Tech-talk
Index: 1994  1995  1996  1997  1998  1999  2000  2001  2002  2003  2004  2005  2006  2007  2008  2009  2010  2011  2012  2013  2014  2015  2016  2017  2018  2019  2020  2021  2022  2023  <20242025 
ANJ, 11 Sep 2024 Valid HTML 4.01! · Home · News · About · Base · Modules · Extensions · Distributions ·
· Download · Search · IRMIS · Talk · Documents · Links · Licensing ·