Show HN: A local secrets manager with easy backup

(github.com)

16 points RaiyanYahya | 2 comments | 29 Jun 25 09:30 UTC | HN request time: 0.42s | source

Show context

CBLT ◴[02 Jul 25 03:34 UTC] No.44440041[source]▶

Skimmed the readme, seems like it's not AEAD? I don't see any reason to use a tool that's not AEAD.

Also, while I get the appeal of just storing it all in a giant JSON, I don't really feel that's the final word in simple storage formats. I'd personally just use SQLite, or some other format I could rsync.

replies(3): >>44440127 #>>44440230 #>>44440720 #

1. ecb_penguin ◴[02 Jul 25 04:20 UTC] No.44440230[source]▶

>>44440041 #

> Skimmed the readme, seems like it's not AEAD?

Are you just looking for keywords? That's not how a quality security review should be done.

> I don't see any reason to use a tool that's not AEAD.

Do you have an actual attack? Non AEAD schemes have been used for decades without any attack.

There might be entirely valid complaints against this. Lack of AEAD is not one...

> I don't really feel that's the final word in simple storage formats.

Literally nobody said it was

> I'd personally just use SQLite, or some other format I could rsync.

You can rsync a JSON file just as you can rsync a SQLite file....

replies(1): >>44440237 #

2. CBLT ◴[02 Jul 25 04:22 UTC] No.44440237[source]▶

>>44440230 (TP) #

> You can rsync a JSON file just as you can rsync a SQLite file....

`sqlite-rsync` does a deep comparison and only transmits new rows, without deleting other data. `rsync` on a json file just replaces the file.

↑