|
|
|
|
|
|
by qyckudnefDi5
382 days ago
|
|
|
For point 1 I recall the creator of Age, Filippo Valsorda suggesting something similar: >The .age-recipients files also include the public key for an offline disaster recovery key. I generated the key with age-keygen, encrypted it with age -p, printed the ciphertext as a QR code, and wrote the random passphrase in pen. This is a bit convoluted, but I don’t trust printers. All this was done in a tmpfs, so nothing reached storage. Only had to do this once, and have been using that key as the anchor for all my disaster recovery data.
https://words.filippo.io/dispatches/passage/ |
|
|