This command will read into var pwdfrom stdin (with echo disabled):

此命令将从 stdin读入 var pwd（禁用回显）：

IFS= read -s  -p Password: pwd

Unsetting IFS will allow for leading and trailing whitespace in passwords (which may be supported in some environments, so best to support it during your script's input of the user credentials)

取消设置 IFS 将允许密码中的前导和尾随空格（在某些环境中可能支持，因此最好在脚本输入用户凭据期间支持它）

To validate leading/trailing whitespace is handled appropriately you can use:

要验证前导/尾随空格是否得到适当处理，您可以使用：

echo -n "$pwd" | hexdump -C

Note: don't use with real passwords as it dumps to the console!

注意：不要使用真实密码，因为它会转储到控制台！

HT: Ron DuPlain for this additional information on IFS unsetting.

HT：Ron DuPlain 提供了有关 IFS 取消设置的附加信息。

stty_orig=$(stty -g) # save original terminal setting.
stty -echo           # turn-off echoing.
IFS= read -r passwd  # read the password
stty "$stty_orig"    # restore terminal setting.

If you need to grab a passwd to supply as a paramter to a program, then unicorns advice to just turn off the echo is good.
Having a passwd check in the script doesn't work - if the user can execute the bash script they also have permission to read it and see the passwd.

如果您需要获取 passwd 作为参数提供给程序，那么 unicorns 建议关闭回声是好的。
在脚本中进行密码检查不起作用 - 如果用户可以执行 bash 脚本，他们也有权阅读它并查看密码。

If you want to only allow people with a passwd to run a program then the secure way is to create a new user account that owns the program and have a script that uses 'sudo' to run the program as that user - it will prompt for the users passwd in a secure way.

如果您只想允许拥有密码的人运行程序，那么安全的方法是创建一个拥有该程序的新用户帐户，并拥有一个使用“sudo”以该用户身份运行该程序的脚本 - 它会提示您用户以安全的方式密码。