• m-p{3}@lemmy.ca
    link
    fedilink
    arrow-up
    11
    ·
    4 months ago

    Storing the encryption keys in the Credentials Manager (Windows) or the Keychain (macOS, Linux) would be a better choice than a plaintext file.

    And using Bitlocker / VeraCrypt / Filevault / LUKS will at least protect the data at rest.

    But as you said, it’s game over if the machine is compromised.