Comment by posixplz
8 years ago
A response 8 days later is better than no response at all, right? :)
I agree that a multi-recipient GPG protected file is sufficient for a small org. In fact, that's how I used to do it Circa 2011. We found it worked quite well - we committed the GPG protected files to a version control system (git) and used githooks to make sure that only encrypted files were permitted, preventing users from intentionally/accidentally defeating gitignore.
No comments yet
Contribute on Hacker News ↗