Replying to Avatar Moon

If you are on most Unix-like machines, command line parameters to programs are visible to all other processes. on Linux systems you can find it for example via:

ps -p [some pid here] -o args
Avatar
jb55 1y ago

they can also read from any file as well. I treat my system as a safe area, but this is still more of a dev version. release version will have encrypted flatfiles for storing keys. although even that is annoying because you have to enter a password every time you open the app. not even signal desktop does this.

on macos we are looking into using local auth for encrypting/decrypting which would be way more slick

https://github.com/damus-io/notedeck/issues/138

Reply to this note

Please Login to reply.

Discussion

Avatar
jb55 1y ago

I don't even really expect normal users to be using the CLI like this. once your keys are stored locally you don't need that CLI argument. this is mainly for testing.

Avatar
Moon 1y ago

That makes sense, thank you for the response.