empress
empress copied to clipboard
Get rid of roles/tarsnap/files/decrypted_tarsnap.key
Users should follow the tarsnap instructions and place the key in /root/.tarsnap/tarsnap.key
. Having it look for the key in roles/tarsnap/files/decrypted_tarsnap.key
is potentially dangerous (could get committed and pushed somewhere it's not supposed to), and it's just a weird location for it. I think we already did this with the SSL certs, so let's do it for tarsnap.
- Reference
/root/.tarsnap/tarsnap.key
in.tarsnaprc
- Update README.md as needed