James, which version are you using? Newer versions come with an option in Send Commands, “Hide text to be sent”, meaning you could use Send Commands for this without exposing a password.
I am on version 2.44. Due to the nature of my work and the strict security where I am working, I cannot have an option to just unhide the password if it is entered into the Send Commands form. Although I have not tested it I am concerend that the export profile might expose the password.
In the overall I am very pleased with the product.
We need an additional login support to sudo to another account and store the password needed for the account being sudo'd to. The "Send Command" option is insufficient for this purpose and would leave a password exposed. Currently I have Send Command set up to detect the $ in my prompt/term and then send "sudo su - <acct+name+here>". Help! I have thousands of accounts across hundreds of servers.