mopidy-scrobbler icon indicating copy to clipboard operation
mopidy-scrobbler copied to clipboard

Published 20 hours ago verified publisher icon mopidy

Encrypt passwords

Open schvabodka-man opened this issue 6 years ago • 6 comments

Add possibility to encrypt your stuff. Using as is is very insecure

schvabodka-man avatar Sep 24 '17 15:09 schvabodka-man

Which stuff do you mean?

jjok avatar Sep 25 '17 14:09 jjok

Stuff in your mopidy config for scrobbler. You know, username and password for last.fm

schvabodka-man avatar Sep 25 '17 15:09 schvabodka-man

But those are not publicly accessible, they are secured under system security model. Only users with read access should be able to read them, that's why we recommend running under a different user.

The /etc/mopidy/mopidy.conf should have permission 600, in that case, owner of that file can read it and of course superuser.

https://docs.mopidy.com/en/latest/service/#running-as-a-service https://en.wikipedia.org/wiki/File_system_permissions

dz0ny avatar Sep 25 '17 16:09 dz0ny

Yes, you can do chmod 600, but the're still in plain text format

schvabodka-man avatar Sep 25 '17 16:09 schvabodka-man

Duplicate of #1.

marsjaninzmarsa avatar Oct 08 '17 04:10 marsjaninzmarsa

I've submitted PR #27, which does this.

evamvid avatar Sep 14 '18 23:09 evamvid