Opening-Button-8988

> an empty password and a password stored in a plain text file provide the same level of security At significantly less convenience.

@rrrlasse while your issue simply comes down to user error (also, 0.1.0 was released on 2015, which is 8 years ago...), I can understand your pain. I have since discovered...

All good points here. A password file may provide the same level of security at much less convenience. Users who backup to cloud storage may not necessarily want their backups...

@MichaelEischer > For the former a... Maybe I'm misunderstanding you but I can only imagine the --use-empty-password option to be useful only when **creating** repositories. That's the only time it...

That'd work, really. Just add that to the documentation, and to the CLI docs. Would at least be a temporary solution.

> Making encryption _optional_ but enabled by default absolutely does not "weaken encryption or integrity". > Really that should not be difficult to understand. Exactly what I'm thinking (even though...

@MichaelEischer @doak I have nothing to add except :+1: It's interesting to read a programmer lay out what needs to be done, because that [table](https://github.com/restic/restic/issues/4326#issuecomment-1939329102) is what I had in...

I would like to see these changes as well.

@smessmer I don't know what I'm talking about, but I think argon2id allows you to modify certain variables and I've heard it's more secure than its competition. No idea if...

@0xalivecow I haven't used cryfs in a while, but I never fixed it. I also experience the same issue with restic and borgbackup. I'm pretty sure it's bottlenecked by the...