8000 Security: open call for thoughts on securing WTF's config file · Issue #517 · wtfutil/wtf · GitHub
[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to content
Security: open call for thoughts on securing WTF's config file #517
New issue
New issue
Closed
Closed
Security: open call for thoughts on securing WTF's config file#517
Labels
wontfix🔍 investigating
@senorprogrammer

Description

@senorprogrammer
senorprogrammer
opened on Jul 24, 2019

WTF's config.yml file is a plain text file stored in the user's home directory. Given the nature of many of the modules in WTF, that file could hold account information, passwords, URIs, and API keys for the user's critical systems.

This issue is a place to discuss the security of that file.

  1. Does it need to be secured? Should we just trust the machine instead?
  2. If it should, how so? What's least-friction for the user?

Metadata

Metadata

Assignees

No one assigned

    Labels

    wontfix🔍 investigating

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions
      0