So obviously pgp is pretty bad [1].
What relatively simple, relatively cross-platform, secure encryption method do you use? For encrypting files locally (no email/messaging).
I've used Veracrypt but managing disks and containers is hard and slow.
[1] https://latacora.singles/2019/07/16/the-pgp-problem.html
@karan Before I read the article, I was going to recommend “age”
https://github.com/FiloSottile/age
and that’s exactly what it recommended ;) It’s pretty simple to use and an overall great program
@JacobNeplokh
For age there is still key.txt plaintext file stored locally, how do you handle that? My idea is to encrypt key.txt file with password using age, them make alias for age first to decrypt key.txt.age and then decrypt whatever you need decrypting. Is there better way?
@karan
@karan
True, but I don't want every time I want to decrypt something to paste private key from password manager into text file and pass it as -i argument. I've tried tried to pipe output of password decrypted keys.txt.age for decryption of some other file, didn't manage to get it working though. This is what is deal breaker for me, otherwise it looks very simple and promising.
@JacobNeplokh
@karan
I've tried this year ago, this also looks promising.
https://github.com/stealth/opmsg
@JacobNeplokh
@nikolal @JacobNeplokh you could probably store the key in a password manager (and use 2fa as well). The idea being that is there's a vuln in age, your blast radius is reduced.