I would look into something like Doppler instead of Vault. (I don’t trust any company acquired by IBM. They have been aquiring and enshittifying companies before there was even a name for it.)

Look into how any different solutions need their keys presented. Dumping the creds in ENV is generally fine since the keys will need to be stored and used somehow. You might need a dedicated user account to manage keys in its home folder.

This is actually a host security problem, not generally a key storage problem per se. Regardless of how you have a vault setup, my approach here is to create a single host that acts as a gateway for the rest of the credentials. (This applies to if keys are stored in “the cloud” or in a local database somewhere.)

Since you are going to using a Pi, you should focus on that being a restricted host: Only run your chosen vault solution on it. Period. Secure and patch it to the best of your ability and use very specific host firewall rules for minimum connectivity. Ie: Have one user for ssh in and limit another user account to managing vault, preferably without needing any kind of elevated access. This is actually a perfect use case for SELinux since you can put in some decent restrictions on the host for a single app (and it’s supporting apps…)

If you are paranoid enough to run a HIDS, you can turn on all the events for any type of root account actions. In theory once the host is configured, you shouldn’t need root again until you start performing patches.

That’s what you just got shown: Shove the configgy bits into Git.

You will likely have to find the configs you want to save first.

Unfortunately, all it will take is one of the Korean groups to be responsible for destroying another Korean group in Ukraine for any retaliation to make it’s way back to the homeland.

Hell, the story doesn’t even need to be real for one of the Korean governments to start lobbing shells over their border.

Honestly, I think this is the plan. It was super weird for NK to actually blow up roads on the border. With that, combined with the timing of them sending troops to Ukraine is even more sus. This probably has more to do with US elections, than anything else.

The more Russian stuff evaporates, the better. And no, I don’t give a fuck who decides to do it.

And that is just an ignorant thing to say.

Putin has been saying NATO was already at war with Russia, so what is it, bub? You can’t start a war that is already started, supposedly.

Hell, there was even a Ukrainian video released from Kursk of some old dude telling Ukrainian soldiers that he expected US troops… because the TV said it was the US that was invading Russia.

Oh. When I said “the west” I was squarely pointing the finger at France. China is playing the longer game there because Russia has stationed Wagner down there already. It benefits both Russia and China if the population is focused on removing French influence. China gets a long term investment hedge against France and Russia gets more cheap mercs for Ukraine.

Now, I don’t really want to spend much time doing a full research project on what is basically a game of thrones’ish style side bet. It’s insanely complicated, I would imagine. After a few African countries went full-on coup d’état a few months ago, I realized there was much more going on.

Edit: I wasn’t downvoting you. I suspect that some people might be trying to launch some instability of their own. Lulz.

Chad has some decent gold fields. They aren’t the biggest the world, but they are substantial enough to draw attention. The cheap labor and zero environmental regulation is a value multiplyer as well.

When you add a little flavor the to pot by destabilizing the country and giving the west a bit of a headache, it’s now even more attractive.

The politicians are fine. China probably just bribes them in foreign currency and they sign the deal without even blinking at the interest rates. (Chad has a corruption index of 20 out of 100 with Senegal just a little better at 43.)

Yeah. Russia did the same to protesters who held blank signs after the invasion of Ukraine.

He is fine with the aid he received, anyway.

Honestly, the North Korean artillery shells Russia has received prematurely wear out their barrels and have a higher chance of blowing up in those barrels. Given that Russian tank and artillery barrels are notoriously bad quality, the artillery men are probably at a higher risk of dying than their targets.

This is just a supplemental aid package which usually doesn’t make the news. It’s mainly just ammo, spare parts and a few vehicles. These updates happen frequently.

Big packages that are billions of dollars usually include many full weapon systems, lika full Patriot systems.

I suspect that a the line item for “demolition equipment and munitions” was high explosives and grenades for drone use.

Here is a rough list of this particular package:

Bad title, btw.

If people want to protest peacefully about whatever, that is fine with me even if they are just digging for reasons to protest. Some people just like to get mad about everything. What a waste of epinephrine.

I have my doubts that China needs Russia for anything other than cheap oil and military weapons designs. With Russia tied up in Ukraine any posturing at this point is kind of a silly drill, IMHO.

Who knows… It could be something bigger later, but not now or for a few years after the Ukraine conflict is over.

Like, we go bomb the shit out of them and keep the country in limbo long enough for the power vacuum to be filled with a couple of larger terrorist groups?