fs: adding warning to user that rclone config is not encrypted by default. fixes #7314 #7793
Conversation
|
not sure if this is how we would want to do this or if this is still needed, but i took a crack at it. |
| return err | ||
| } | ||
|
|
||
| // Append the security warning about unencrypted configurations |
There was a problem hiding this comment.
We should probably only show this message if the config isn't encrypted then we can make a definitive statement "your config is not encrypted..."
To do that we need to export the encrypted state from fs/config/crypt.go something like this (untested)
func IsEncrypted() bool {
return len(configKey) != 0I think also that this should be printed to Stderr like the rest of the config stuff, and I'd probably hard wrap it to 80 chars.
| } | ||
|
|
||
| // Append the security warning about unencrypted configurations | ||
| fmt.Fprintln(os.Stderr, "\nWARNING: By default, rclone configuration files are not encrypted, which may pose a security risk. It is highly recommended to encrypt your configuration file to protect sensitive information. For details on how to encrypt your configuration, visit https://rclone.org/docs/#configuration-encryption.") |
There was a problem hiding this comment.
I think this should probably only be on plain rclone config (which is configCommand above) not here which is rclone config create which is often used by scripts and we don't want to print extra stuff here.
What is the purpose of this change?
adds a simple warning message to create new config flow so users know default behavior is to use unencrypted config files.
Was the change discussed in an issue or in the forum before?
issue #7314
Checklist