Is there anyway to delete data bags after deployed? #242
Labels
Comments
|
Do you mean data bags? Do you have an example in which the name leaks information? |
halida
changed the title
|
Yes, Sorry about the typo. I have lots of nodes, If one of the node is compromised, The hacker will know all my data bag names. |
|
There is currently no way of doing that. It could be added though. The difficult part would be only deleting encrypted ones. Alternatively, all data bags could be deleted every time, you just accept the rsync cost on every deploy |
|
No need only delete encrypted ones, delete all is better. also this feature can be toggled, like: |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Data tags may contain sensitive information, even I can use encrypted data bag, the name will leak some information, Is there any way to delete it after deployed?
The text was updated successfully, but these errors were encountered: