hmm that is probably some solution, 'cause if I'm already logged as user X into the machine this means I know the password :")
Except if someone succed to crack the machine remotely and log as user X. :"), then I'm in trouble...
then i have to decide which is worse the password to be seen on console or not to ask for password at all...