typos
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/push Build is passing
Details
This commit is contained in:
parent
21d014cf97
commit
dabcff8343
|
@ -24,7 +24,7 @@ tags:
|
||||||
|
|
||||||
> "What day does the mortgage come out of our joint account?"
|
> "What day does the mortgage come out of our joint account?"
|
||||||
|
|
||||||
These are questions, particularly that 2nd one, that I want to be able to answer at the drop of a hat. Or, even better, for both my wife and I to already know the answer to without needing to ask each other. However, there are also a couple of other key constraints:
|
These are questions, particularly that 2nd one, that I want to be able to answer at the drop of a hat. However, there are also a couple of other key constraints:
|
||||||
|
|
||||||
1. either one of us must be able to find the answer to these questions if the other person is not around (I travel for work and of course, we have to consider emergency situations where one of us is incapacitated).
|
1. either one of us must be able to find the answer to these questions if the other person is not around (I travel for work and of course, we have to consider emergency situations where one of us is incapacitated).
|
||||||
2. These systems must not compromise our personal security - I don't want fraudsters and hackers knowing my life insurance policy number.
|
2. These systems must not compromise our personal security - I don't want fraudsters and hackers knowing my life insurance policy number.
|
||||||
|
@ -44,7 +44,7 @@ Both systems would give my wife and I easy access to documents that we can both
|
||||||
|
|
||||||
I run all my web applications behind [caddy](/2022/01/08/replacing-nginx-with-caddy/) with TLS encryption enabled for all requests and both wiki systems have comprehensive access control and permissioning systems. However, DokuWiki stores wiki data in flat file text files and Bookstack in MySQL records and there's there's something that gives me the heebie-jeebies about storing very personal information un-encrypted on a web-facing server even if it's otherwise locked down from a NAT security point-of-view. DokuWiki does seem to have [an end-to-end client-side encryption plugin](https://www.dokuwiki.org/plugin:dokucrypt2) but even the developer warns not to use this plugin in place of "a password manager or peer reviewed cryptography tools". Bookstack offers [some advice on security](https://www.bookstackapp.com/docs/admin/security/) and offers MFA via authenticator apps and I suppose I could [encrypt the <s>MySQL</s> MariaDB database](https://mariadb.com/kb/en/data-at-rest-encryption-overview/). 2 gets a more dubious tick.
|
I run all my web applications behind [caddy](/2022/01/08/replacing-nginx-with-caddy/) with TLS encryption enabled for all requests and both wiki systems have comprehensive access control and permissioning systems. However, DokuWiki stores wiki data in flat file text files and Bookstack in MySQL records and there's there's something that gives me the heebie-jeebies about storing very personal information un-encrypted on a web-facing server even if it's otherwise locked down from a NAT security point-of-view. DokuWiki does seem to have [an end-to-end client-side encryption plugin](https://www.dokuwiki.org/plugin:dokucrypt2) but even the developer warns not to use this plugin in place of "a password manager or peer reviewed cryptography tools". Bookstack offers [some advice on security](https://www.bookstackapp.com/docs/admin/security/) and offers MFA via authenticator apps and I suppose I could [encrypt the <s>MySQL</s> MariaDB database](https://mariadb.com/kb/en/data-at-rest-encryption-overview/). 2 gets a more dubious tick.
|
||||||
|
|
||||||
3 is an interesting one here: neither wiki solution would work in an emergency where we don't have internet access (or for some reason, the server hosting the wiki was unavailable for some reason). There is an app that generates a [local mirror of a dokuwiki on your android phone](https://play.google.com/store/apps/details?id=com.fabienli.dokuwiki&hl=en_GB&gl=US) and the dokuwiki [sync](https://www.dokuwiki.org/plugin:sync plugin can be used to make local copies on mine and my wife's phones and computers. However, this doesn't feel like the most useable solution. Bookstack has documentation on how you can [back it up and restore it](https://www.bookstackapp.com/docs/admin/backup-restore/) but again this is probably not something my wife or I would want to be faffing about with regularly.
|
3 is an interesting one here: neither wiki solution would work in an emergency where we don't have internet access (or for some reason, the server hosting the wiki was unavailable for some reason). There is an app that generates a [local mirror of a dokuwiki on your android phone](https://play.google.com/store/apps/details?id=com.fabienli.dokuwiki&hl=en_GB&gl=US) and the dokuwiki [sync](https://www.dokuwiki.org/plugin:sync) plugin can be used to make local copies on mine and my wife's phones and computers. However, this doesn't feel like the most useable solution. Bookstack has documentation on how you can [back it up and restore it](https://www.bookstackapp.com/docs/admin/backup-restore/) but again this is probably not something my wife or I would want to be faffing about with regularly.
|
||||||
|
|
||||||
## Solution 3: Password Manager
|
## Solution 3: Password Manager
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue