• @iamjackflack@lemm.ee
    link
    fedilink
    English
    44 months ago

    Yes because having a user remember to do something is a great line of defense, better than encrypting it from the get go. It should just be encrypted in the file.

    • @gsfraley@lemmy.world
      link
      fedilink
      English
      3
      edit-2
      4 months ago

      I think that’s the way both Splunk and JFrog work – you generate or enter a password into the key field in a YAML file somewhere, start the service, and next time you come back the field’s been encrypted.

    • FlaxOP
      link
      fedilink
      English
      14 months ago

      The step tells you to remove it after at least