Nix

1 readers

1 users here now

founded 1 year ago

MODERATORS

admin@lemmy.nix-community.org

adis@lemmy.blad.is

Handling Secrets in NixOS: An Overview (git-crypt, agenix, sops-nix, and when to use them) (lgug2z.com)

submitted 1 year ago by toxait@alien.top to c/nix@lemmy.nix-community.org

7 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] NateDevCSharp@alien.top 1 points 1 year ago (1 children)

Isn't sops / agenix basically the same thing except instead of you manually putting the secret in foo/secret it's stored encrypted in the Git repo and then it automatically decrypts it at execution time into /var/wherever?

[–] chkno@alien.top 1 points 1 year ago (1 children)

No?

[–] antidragon@alien.top 1 points 1 year ago

I've spent a significant amount of time over the past two weeks evaluating the differences and pros/cons between agenix and sops-nix. And a bit of time looking over your wall of text.

The reality is that your thinking/comic is completely backwards.