Feature Proposal - Encrypt local config
andrew-lis opened this issue · comments
andrew-lis commented
Background:
Right now the file "KeeAnywhere.Accounts.json" is not protected at all (Windows Control Access is easy to overcome), yet it contains sensitive, unencrypted tokens that allows anyone to access all files on the Remote Drive (Google Drive, Dropbox, etc).
Proposal:
- KeeAnywhere should encrypt the "KeeAnywhere.Accounts.json" file at account creation with a user password (different than the one to the KeePass database)
- require a user password to provide the password at program start.
- There should be a feature flag for that