Closed. This question is opinion-based. It is not currently accepting answers.
Want to improve this question? Update the question so it can be answered with facts and citations by editing this post.
Closed 2 years ago.
Improve this question
I'm writing a password manager and I need somewhere to store the encrypted credentials to allow access across multiple devices. Is Gitlab a viable option?
More generally, a Git repository is not a good place to store sensitive information, encrypted or not.
It is a source control made to store history delta and perform diffs (which is not ideal when the versions represent encrypted content)
Using a dedicated vault is safer.
Related
Closed. This question is opinion-based. It is not currently accepting answers.
Want to improve this question? Update the question so it can be answered with facts and citations by editing this post.
Closed 4 years ago.
Improve this question
I have an app in which the user should be able to store videos. I was wondering if Firebase or Sqlite would be better for the job. Please get back to me as soon as possible.
Unless the videos were really short then you wouldn't store them in a database. You would store them as files and store the path to the file in the database.
SQLite would be better if the data in the database is device specific and thus needed no syncing with other devices.
Firebase could be the choice if syncing the data across devices.
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 4 years ago.
Improve this question
Is it secure to simply save it in the local storage along with my project files? Or is it safer to store them as environment variables?
I would in general advice against saving and pushing credential files into a repository for others to see.
You may consider encrypting you credential file. Everyone who has to work with the project then has to decrypt it first and you have control who receives the access to it.
Have a look Googles KMS: https://codelabs.developers.google.com/codelabs/cloud-encrypt-with-kms/index.html#0
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 4 years ago.
Improve this question
As you know when if a stranger know the path of your SQLite database file he can easy download it. my question is how to avoid that?
I'm assuming you're accessing the SQLite database server-side. You could configure whatever host you're using (apache, nginx, etc...) to not allow access to the file or you could change the permissions to the file to only allow you to view it (using chmod).
Closed. This question is opinion-based. It is not currently accepting answers.
Want to improve this question? Update the question so it can be answered with facts and citations by editing this post.
Closed 5 years ago.
Improve this question
I have been reading a lot of articles in regards to security and other parties reverse engineering your app and then flooding your APIs etc.
For my current (nativescript) app I am using Firebase for Auth and then have my own API URL hardcoded into the app.
I am considering using Firebase Remote Config to retrieve my API URL and then setting it in the app. In order to not have my API URL exposed.
I was wondering if someone has done this before? And if this approach is a good or bad idea?
Thanks. Robert
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 8 years ago.
Improve this question
I just wondered and start reading SQLite source code.
There weren't any fopen,fclose except logging functions.
I tried to track down sqlite3_open, sqlite3_prepare, I came into sqlite3parse and stuck.
There is fopen in
sqlite3MemdebugDump
sqlite3Memsys3Dump
sqlite3Memsys5Dump
sqlite3VdbeTransferError
which are debug functions.
Are they wrote their own disk handler?
(I always stunned how professional applications handle this kind of things.)
Summary: How SQLite handle files without fopen?
SQLite accesses files through its OS interface, which is implemented in the os_*.c files.