Secret management #22

New issue

Open

opened 2023-09-30 12:52:16 +00:00 by pim · 2 comments

pim commented 2023-09-30 12:52:16 +00:00

Owner

Copy link

I need to figure out how to do secret management in nix for e.g. wireguard. All files in the nix store are world-readable (on my machine at least). While I only use this machine for myself, it seems like a bad idea to do. The way it seems to me, saving encrypted files in the nix store seems like an okay idea.

Resources:
https://github.com/Mic92/sops-nix
https://github.com/ryantm/agenix
https://nixos.wiki/wiki/Comparison_of_secret_managing_schemes

I need to figure out how to do secret management in nix for e.g. wireguard. All files in the nix store are world-readable (on my machine at least). While I only use this machine for myself, it seems like a bad idea to do. The way it seems to me, saving encrypted files in the nix store seems like an okay idea. Resources: https://github.com/Mic92/sops-nix https://github.com/ryantm/agenix https://nixos.wiki/wiki/Comparison_of_secret_managing_schemes

pim commented 2023-10-03 07:08:14 +00:00

Author

Owner

Copy link

https://github.com/jordanisaacs/homeage

https://github.com/jordanisaacs/homeage

pim commented 2023-10-08 12:25:10 +00:00

Author

Owner

Copy link

Homeage has best support for flakes and as of yet, cannot get it to work without it

Homeage has best support for flakes and as of yet, cannot get it to work without it

This repo is archived. You cannot comment on issues.

No Branch/Tag specified

Branches Tags

master

vimjoyer-nvim

No results found.

Labels

Clear labels

No items

No labels

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: pim/nixos-home#22

No description provided.