summaryrefslogtreecommitdiff
path: root/doc/security.mdwn
diff options
context:
space:
mode:
authorJoey Hess2014-07-06 18:23:54 -0400
committerJoey Hess2014-07-06 18:23:54 -0400
commit40d559fbbeb35f76927366948625bb58f1c72209 (patch)
tree35017feaeefe61548f3496cfd0016fe7ab55d68f /doc/security.mdwn
parente5dcc8e17668b3994fc8de1d53c7e48659c08aee (diff)
parent32bb2d50a176ebb9070288a75bf86fd1c92ef0be (diff)
Merge branch 'joeyconfig'
Diffstat (limited to 'doc/security.mdwn')
-rw-r--r--doc/security.mdwn15
1 files changed, 8 insertions, 7 deletions
diff --git a/doc/security.mdwn b/doc/security.mdwn
index 5576bf06..075d68ec 100644
--- a/doc/security.mdwn
+++ b/doc/security.mdwn
@@ -27,10 +27,11 @@ Since the propoellor git repository is public, you can't store
in cleartext private data such as passwords, ssh private keys, etc.
Instead, `propellor --spin $host` looks for a
-`~/.propellor/privdata/$host.gpg` file and if found decrypts it and sends
-it to the remote host using ssh. This lets a remote host know its own
-private data, without seeing all the rest.
-
-To securely store private data, use: `propellor --set $host $field`
-The field name will be something like 'Password "root"'; see PrivData.hs
-for available fields.
+`~/.propellor/privdata/privdata.gpg` file and if found decrypts it,
+extracts the private that that the $host needs, and sends it to to the
+$host using ssh. This lets a host know its own private data, without
+seeing all the rest.
+
+To securely store private data, use: `propellor --set $field $context`
+Propellor will tell you the details when you use a Property that needs
+PrivData.