Are user (actor) signing keys stored in cleartext on disk? #3247
-
Hey folks. I've just started poking around the codebase, and while looking at how the PDS does actor key management I ran into this: atproto/packages/pds/src/actor-store/index.ts Lines 57 to 61 in 13636ba Which looks like private signing keys are just being read off the filesystem as-is. Am I missing something crucial here? |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment 5 replies
-
I believe you're correct, but bear in mind that the repo signing keys are replaceable (e.g. via did:plc rotation keys) if they're ever compromised (and there's talk of rotating them on a more regular basis). Kinda like how your TLS private keys usually just sit on disk accessible by your httpd. |
Beta Was this translation helpful? Give feedback.
I believe you're correct, but bear in mind that the repo signing keys are replaceable (e.g. via did:plc rotation keys) if they're ever compromised (and there's talk of rotating them on a more regular basis). Kinda like how your TLS private keys usually just sit on disk accessible by your httpd.