> Is there a good solution to the problem of starting up a network server that
> needs access to an encrypted database?
> (They also give
> you the option of having the server store the pass phrase on disk, although
> they warn you that this is completely insecure.)
Is it really? That's not clear, to me. Do you trust the local
machine, or not? Have you locked it down, or not.
You are worried about someone "breaking in" and being able to read
the passphrase. But you are not worried about someone "breaking
in" and replacing software?
Are you sure that's a realistic distinction to make?
/r$
- starting up servers that need access to secrets Jeffrey M. Smith
- Re: starting up servers that need access to secrets Matthew Hamrick
- Re: starting up servers that need access to secrets Rich Salz
- Re: starting up servers that need access to secr... Jeffrey M. Smith
- Re: starting up servers that need access to ... Rich Salz
- Re: starting up servers that need access... Ben Laurie
- Re: starting up servers that need a... Rich Salz
- Re: starting up servers that need access... Ted Lemon
- Re: starting up servers that need access... Eric Murray
- Re: starting up servers that need access to secr... Ted Lemon
- RE: starting up servers that need access to secrets Salz, Rich
