I haven’t seen this posted yet here, but anybody self-hosting OwnCloud in a containerized environment may be exposing sensitive environment variables to the public internet. There may be other implications as well.

  • inspxtr@lemmy.world
    link
    fedilink
    English
    arrow-up
    3
    ·
    1 year ago

    what are the other alternatives to ENV that are more preferred in terms of security?

    • sphericth0r@kbin.social
      link
      fedilink
      arrow-up
      1
      ·
      1 year ago

      It’s probably best to look at what the devops industry is embracing, environment variables are as secure as any of the alternatives but poor implementations will always introduce attack vectors. Secret management stores require you to authenticate, which requires you to store the credential for it somewhere - no matter what there’s no way to secure an insecure implementation of secrets access