TerryJC wrote: ↑05/01/2022, 6:30
PatrickW wrote: ↑04/01/2022, 23:21I think the usual solution to that is a password manager.
Is there one for the Pi? It would need to run in a console, since the WMT Pis are all headless.
Ah, I didn't consider that you often log in directly to the Pis, rather than via SSH. I don't suppose a password manager would gain you much if it's on the Pi itself, seeing as you'd still need a (similarly strong) password for the password manager.
With that said, there is pass, which is fairly easy to get to grips with. In the absence of a clipboard, I suppose you might be able to load the password into a shell variable temporarily and then pass that to sudo each time instead of typing it in. But really I was thinking about logging in via SSH and using a password manager on the machine that's running the SSH client.
Another, admittedly slightly esoteric and far-fetched, option is available if you happen to own a USB barcode scanner: On another device, from a password manager, take the password, encode it into a QR code, and display it on screen (e.g. by pasting the password into qtqr). Then plug the barcode scanner into the Pi and scan the QR code every time you need to input the password, instead of typing it manually. (A webcam and zbarcam running on the Pi would probably not have quite the same convenience factor.)