Restic: Feature-Request: gopass support

Created on 18 Feb 2019  路  3Comments  路  Source: restic/restic

Output of restic version

restic 0.9.4 compiled with go1.11.5 on linux/amd64

What should restic do differently? Which functionality do you think we should add?

Retrieving keys via gopass (https://www.gopass.pw/) would be super awesome, because environment variables are insecure.

What are you trying to do?

I like to pipe my repository passwords to restic in a secure manner, without storing them in cleartext password files or environment variables

Did restic help you or made you happy in any way?

restic is awesome!

need feedback
Source
picture shibumi

Most helpful comment

because environment variables are insecure.

Why is that? I think it's a common misconception, I've written a bit about it here: https://forum.restic.net/t/read-password-from-gnome-keyring/1094/6?u=fd0

If you still don't like to use environment variables, you can use the shell to read the password:

$ restic --password-file <(pass restic/password) [...]
picture fd0 on 18 Feb 2019
👍4

All 3 comments

Can't you just read the key from /dev/stdin?

Crest picture Crest on 18 Feb 2019

because environment variables are insecure.

Why is that? I think it's a common misconception, I've written a bit about it here: https://forum.restic.net/t/read-password-from-gnome-keyring/1094/6?u=fd0

If you still don't like to use environment variables, you can use the shell to read the password:

$ restic --password-file <(pass restic/password) [...]
fd0 picture fd0 on 18 Feb 2019
👍4

thanks this works for me.

shibumi picture shibumi on 3 Mar 2019
Was this page helpful?
0 / 5 - 0 ratings

Related issues

viric picture viric  路  5Comments
reallinfo picture reallinfo  路  4Comments
mholt picture mholt  路  4Comments
fbartels picture fbartels  路  3Comments
dionorgua picture dionorgua  路  5Comments