Prysm: [FEAT] Able to set encrypt password in ENVIRONMENT instead of via flag?

Created on 29 Jan 2020  路  3Comments  路  Source: prysmaticlabs/prysm

Would like to have the option of setting encrypt password in environment for validator clients instead of flag so we can delete credentials post launch of the validator client

Enhancement Help Wanted Security

All 3 comments

Password as command line arg should be avoided at any cost.

ref https://serverfault.com/questions/592744/how-to-hide-a-password-passed-as-command-line-argument/596696#596696

ref https://github.com/bitcoin/bitcoin/issues/2318

Viable solutions are config files, password files, or as the OP suggested, env variables.

keymanageropts can be an environment variable or a file path, to allow for this.

We offer file based configuration now, if that helps.

https://docs.prylabs.network/docs/prysm-usage/parameters/#loading-parameters-via-yaml-file

Was this page helpful?
0 / 5 - 0 ratings

Related issues

rauljordan picture rauljordan  路  5Comments

MariusVanDerWijden picture MariusVanDerWijden  路  5Comments

terencechain picture terencechain  路  4Comments

prestonvanloon picture prestonvanloon  路  4Comments

q9f picture q9f  路  5Comments