Not considering this as security critical is IMHO a mistake.
the password appears not only an the screen and in the shell history, but also in the output of "ps -aux" for any other user on the machine.
There is already a proposal to fix it here :
https://launchpad.net/products/bzr/+spec/authinfo
(this is the "not 100% secure, but convenient and mostly satisfying" method. The command-line prompt is also useful for people accepting to type the password repeatedly and not willing to store it on disk)
Not considering this as security critical is IMHO a mistake.
the password appears not only an the screen and in the shell history, but also in the output of "ps -aux" for any other user on the machine.
There is already a proposal to fix it here :
https:/ /launchpad. net/products/ bzr/+spec/ authinfo
(this is the "not 100% secure, but convenient and mostly satisfying" method. The command-line prompt is also useful for people accepting to type the password repeatedly and not willing to store it on disk)