Environment variables are *not more secure* than command line parameters! It's s... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		bjourne 3 months ago \| parent \| context \| favorite \| on: Environment variables are a legacy mess: Let's div... Environment variables are not more secure than command line parameters! It's such a common misconception that because environment variables are "not seen" they can serve as a secure channel. They emphatically cannot.

akvadrako 3 months ago [–]

Secrets being hidden ("not seen") is really their main quality...

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact