Vault is a powerful tool for managing secrets and protecting sensitive data. It provides a secure way to store, manage, and access secrets, such as passwords, API keys, and certificates. Vault also provides a convenient way to manage access to these secrets, allowing users to control who can access them and when.
The Concerning option on Vault is a great way to ensure that your secrets are kept safe and secure. It allows you to set up a policy that requires users to provide additional information before they can access a secret. This additional information can include a PIN, a password, or a biometric authentication. This ensures that only authorized users can access the secret, and that the secret is kept secure.
The Concerning option also allows you to set up an expiration date for the secret. This ensures that the secret is only available for a certain amount of time, and that it is not accessible after the expiration date. This is especially useful for secrets that are only needed for a short period of time, such as temporary passwords or API keys.
The Concerning option also allows you to set up an audit log for the secret. This audit log will record all access attempts to the secret, allowing you to track who has accessed the secret and when. This is useful for ensuring that the secret is only accessed by authorized users, and that any unauthorized access attempts are detected and addressed.
Overall, the Concerning option on Vault is a great way to ensure that your secrets are kept secure and that only authorized users can access them. It provides an additional layer of security, and allows you to set up an expiration date and an audit log for the secret. This ensures that your secrets are kept safe and secure, and that any unauthorized access attempts are detected and addressed.
35 thoughts on “Exploring Options for Vault”
Huh, agreed, that’s a terrible idea. Putting your keys online is a bad idea.
To be fair, they’re already online (right here on Reddit). But adding to another online location?? That’s not good.
Someone else spotted this earlier, came here to ask for advice about it. Reddit should really encourage the making of hard (I.e. written on paper) copies of the seed
Very true, paper and pen should be the first thing, then you could get those metal stamps if you feel like.
>I wouldn’t trust Google with my seed
Yeah backing up your seed online will have no bad results at all. Said no one ever.
Isn’t it like encrypted and kept separately or something? Similar to how your Google Authenticator app is linked to your Google Drive? But it’s not actually storing anything there in files so you or hacker can browse it and read it?
It kinda makes sense if you only have free avatars, but anything more stored on a cloud is a big no no.
They should put some disclaimer ASAP
Give a chance to your paper and pen rather than online cloud service. Keep it safe
That definitely is a thing to avoid. I saw that there and thought, we in this community keep advising people against this and here it is!
It’s called a seed for a reason!
You must bury the phrase on the ground, sealed, and dig it in situations like this!
Anything you upload to Google Drive is encrypted. It should be safe enough but I still prefer the good old pen and paper method.
Yeah I don’t think it actually stores your seed into Google Drive. But your skepticism is healthy, better safe than sorry.
Keep it secret, keep it safe
Write down, fireproof safe, done.
Thats a No No…
It’s an easy and fast solution for noobs.
Nothing can give you 100% security.
The best way to keep your funds from being spend is to destroy your own seed ASAP 😉 /s
Also agreed. People have terrible opsec practices online and storing their seed online is a recipe for disaster
Yes no Google for me either
That’s a terrible idea and shouldn’t be promoted, “write down your seed phrase on paper with a pen and store it in a safe location for backup” should be the only thing to recommend there imo.
Hey google, heres access to my assets, I sure trust that everyone at your company has transcended the basic human sensation known as greed👌
Did you a banner or an ad?
Oh no, that’s terrible… You should send me your seed so I can keep it safe from those hackers.
Yea, same. My standard key MO of one copy in the house for convenient use, and a couple backups in strategic locations in case of house fire are good enough for me.
Even if I only had the one vulnerable to a house fire or natural disaster or something, the risk of that happening is infinitesimally smaller than the risk of a cloud hack. If the cloud itself is less secure than your wallet is with that key phrase, it doesn’t make sense to store your keys there.
I created a Coinbase Wallet the other day to help a friend out of a jam..
While generating your seed phrase it asks you, well it basically tells you, to back up your seed phrase on Google Drive or to copy it to your clipboard. Zero about saving it offline.
I thought Coinbase would do better than that. Then again, Drive is *probably okay* in 99.9% of cases. Unfortunately this might be the kind of BS necessary for mainstream adoption – most people are simple, or really don’t care.
I think that it is a terrible idea for crypto people but for average people that only have free Reddit avatars is okay.
People needs to be educated into good passwords and also 2FA. I honestly believe that 2FA should be mandatory for everybody.
Buy a titanium seed wallet and etch the words and store in a safe place , it’s one of the best ways imo
I personally haven’t seen this banner before, but you’re definitely right to be concerned, no one in their right mind would backup their vault online, let alone on Google servers, can’t trust them as far as I can throw em!
It is encrypted. For the non tech savvy, it is the way to go. It’s an option. We are not forced to use it.
I saw this and I thought, no, no, no.
best things are often te most simple, a piece of paper in a safe/locked box hidden in ur house. (and if u want to add even more fire safety. hide 1 copy at a trusted place, so even a fire wont make u lose ur crypto
I’m gonna be real and just say I was able to access my recovery phase by using this option so I’m greatful, I thought my moons were burnt toast.
Yea, I was a little confused when I saw that option, thought about it then said nope.
I don’t hear enough people talk about putting a hot wallet on and older phone and using it as using it a wallet. It is easier than a Ledger. Store your keys locally on the device.
Google has a new wave of advertisements for Chrome as the bastion of password security. Been seeing them on tv as well.
They’re after my precious moons 😡😡
I wonder if this is a new trend because my cex started a new liquidity platform (Okto) and they asked to save it on Google drive too, but also said that even if the Google account is compromised, the wallet won’t be. Haven’t invested anything there tho