bastelfreak
commented
2 years ago I am a bit fan of gopass. If someone wants to migrate to it I am +1
Open ekohl opened 2 years ago
bastelfreak
commented
2 years ago I am a bit fan of gopass. If someone wants to migrate to it I am +1
alexjfisher
commented
2 years ago ... It is my suggestion to create a new private repository ...
We already have a separate org if that would be a better home.
ekohl
commented
2 years ago Maybe. It's mostly that for maximum security you don't want the repository to be publicly visible.
ekohl
commented
2 years ago I did some conversion locally. However, I couldn't import a GPG key (0x0C7F187769D072B93B642BB9E484250533AE92DA from Julien) so can't encrypt for that. I can push it somewhere for review if there's interest.
Today a large encrypted file is used. However, a tool like gopass can do the same thing. The only consideration is that the filenames do show up in git. It is my suggestion to create a new private repository to store the passwords using gopass and remove the credentials (and related files) from this repository.