mirror of https://github.com/ryan4yin/nix-config.git synced 2026-03-18 15:34:13 +01:00

Files

Ryan Yin 34fdd92351 feat: comment out nixpkgs-unstable, we use unstable by default (#232 )

* feat: comment out nixpkgs-unstable, we use unstable by default

Signed-off-by: Ryan Yin <xiaoyin_c@qq.com>

* fix: typo...

---------

Signed-off-by: Ryan Yin <xiaoyin_c@qq.com>

2025-11-01 07:21:57 -06:00

default.nix

feat: comment out nixpkgs-unstable, we use unstable by default (#232 )

2025-11-01 07:21:57 -06:00

README.md

fix(typo):morden -> modern

2024-07-24 01:45:32 +08:00

README.md

Encryption

We have GnuPG & password-store installed by default, mainly for password management, authentication & communication encryption.

We also have LUKS2 for disk encryption on Linux, and rclone for cross-platform data encryption & syncing.

age may be more general for file encryption.

Sops can be used for file encryption too, if you prefer using a Cloud provider for key management.

Asymmetric Encryption

Both age, Sops & GnuPG provide asymmetric encryption, which is useful for encrypting files for a specific user.

For modern use, age is recommended, as it use AEAD encryption function - ChaCha20-Poly1305, If you do not want to manage the keys by yourself, Sops is recommended, as it use KMS for key management.

Symmetric Encryption

Both age & GnuPG provide symmetric encryption, which is useful for encrypting files for a specific user.

As described in age Format v1, age use scrypt to encrypt and decrypt the file key with a provided passphrase, which is more secure than GnuPG's symmetric encryption.