X-Git-Url: https://git.distorted.org.uk/~mdw/sgt/putty/blobdiff_plain/01ccff1bf84e2f507e7c144f97413b0b4add5b35..4858529b0c2a0d95e52f0afa32f59300e11344d1:/cmdline.c

diff --git a/cmdline.c b/cmdline.c
index bdfa1aa2..033df64a 100644
--- a/cmdline.c
+++ b/cmdline.c
@@ -319,10 +319,15 @@ int cmdline_process_param(char *p, char *value, int need_save, Config *cfg)
 	/* We delay evaluating this until after the protocol is decided,
 	 * so that we can warn if it's of no use with the selected protocol */
 	if (cfg->protocol != PROT_SSH)
-	    cmdline_error("The -pw option can only be used with the "
+	    cmdline_error("the -pw option can only be used with the "
 			  "SSH protocol");
-	else
-	    cmdline_password = value;
+	else {
+	    cmdline_password = dupstr(value);
+	    /* Assuming that `value' is directly from argv, make a good faith
+	     * attempt to trample it, to stop it showing up in `ps' output
+	     * on Unix-like systems. Not guaranteed, of course. */
+	    memset(value, 0, strlen(value));
+	}
     }
 
     if (!strcmp(p, "-agent") || !strcmp(p, "-pagent") ||