Comments on: Keep your production credentials encrypted, hassle-free http://www.dweebd.com/mac-os/keep-your-production-credentials-encrypted-hassle-free/ Web Freshness Mon, 05 Jul 2010 23:44:57 +0000 http://wordpress.org/?v=2.9.1 hourly 1 By: duncanbeevers http://www.dweebd.com/mac-os/keep-your-production-credentials-encrypted-hassle-free/comment-page-1/#comment-575 duncanbeevers Thu, 25 Feb 2010 18:29:36 +0000 http://www.dweebd.com/?p=260#comment-575 One advantage to using an encrypted disk image it that it can be easily shared between developers without requiring those developers to share the private key necessary to decrypt the disk image. Additionally, it provides natural, automatic encapsulation of the period during which sensitive information is available. It's also a very general solution since the secure volume can be used to store arbitrary secure files. This can be a bit of hassle when using per-file two-way encryption. This solution also integrates seamlessly with the Mac keychain which makes for a nice workflow. Let me know how two-way encryption works out for you, or if you've already been using it, please share some details of how you use it in practice. One advantage to using an encrypted disk image it that it can be easily shared between developers without requiring those developers to share the private key necessary to decrypt the disk image. Additionally, it provides natural, automatic encapsulation of the period during which sensitive information is available.

It’s also a very general solution since the secure volume can be used to store arbitrary secure files. This can be a bit of hassle when using per-file two-way encryption.
This solution also integrates seamlessly with the Mac keychain which makes for a nice workflow.

Let me know how two-way encryption works out for you, or if you’ve already been using it, please share some details of how you use it in practice.

]]> By: bryanl http://www.dweebd.com/mac-os/keep-your-production-credentials-encrypted-hassle-free/comment-page-1/#comment-574 bryanl Thu, 25 Feb 2010 15:05:29 +0000 http://www.dweebd.com/?p=260#comment-574 Seems awfully complicated. How about implementing two way encryption, so you can just encrypt the entire database.yml on the filesystem. Seems awfully complicated. How about implementing two way encryption, so you can just encrypt the entire database.yml on the filesystem.

]]>