Welcome to the VanDyke Software Forums

Join the discussion today!

Go Back   VanDyke Software Forums > General

Thread Tools Display Modes
Old 06-11-2020, 09:32 PM
ertank ertank is offline
Registered User
Join Date: May 2020
Posts: 2
Command Manager safety


I am using SecureCRT 8.7.2 on Windows 10 OS. This is mainly to access several Linux VPS servers on the Internet over ssh.

SecreCRT does not start without providing a password for initial run.

I have quite long and not easy to memorize root passwords for the VPS systems I am connecting to. I cannot login as root user directly (restricted).

One way I found easy enough for myself is to store root passwords in Command Manager and use them when necessary. I also ticked disable tooltip for added security.

What I would like to know is how safe these root passwords in Command Manager?

Thanks & Regards,
Reply With Quote
Old 06-12-2020, 09:32 AM
cboyack cboyack is offline
VanDyke Technical Support
Join Date: Apr 2020
Location: Albuquerque, NM
Posts: 22
Originally Posted by ertank View Post
What I would like to know is how safe these root passwords in Command Manager?
Hi ertank,

Command Manager data is not encrypted. It is not recommended to store your passwords in the Command Manager, since the data is stored in plaintext within an .ini file.

I've added a feature request on your behalf regarding encrypting Command Manager entries so that the product director may be able to evaluate it for potential inclusion in some future release. I don't yet have any ETA for when or even if this might ever become available, but if it does, we can post the information to this forum. If you prefer direct email notification, send an email to support@vandyke.com and include Feature Request - Forum Thread #14203 in the subject line or use this form from the support page of our website.

If you wish to securely automate the process of entering commands after the initial connection, you may utilize the "Logon Actions" feature of SecureCRT (Session Options > Logon Actions category).

In your case, you would:
  1. Delete the two default Expect/Send entries
  2. [Add...] an entry that "Expects" the last few unique characters of the remote system's shell prompt, and "Sends" the desired su command
  3. [Add...] an additional entry that "Expects" the last few unique characters of the remote system's password prompt and "Sends" the needed "quite long and not easy to memorize" password (enable the Hide option to mask the password from prying eyes that may be looking over your shoulder)
  4. Save your changes, then disconnect/reconnect to try it out
The image below shows a basic version of this (the example shows en as the command instead of su, but you can see the general idea:

VanDyke Software
Technical Support
(505) 332-5730
Reply With Quote

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

All times are GMT -6. The time now is 06:45 PM.