[cap-talk] Don't put capabilities in argv?

[Darius Bacon]

Kevin Reid <kpreid at mac.com> wrote:
> * The simplest safe-by-default mechanism I can think of is to read the  
> capability from a file whose name is passed on the command line.

How about passing it in the environment?

  arg1=secretpassword dosomething

instead of

  dosomething --arg1 secretpassword

This has at least the flaw that environment variables have dynamic
scope; but the filesystem is a global scope as well.

Darius