- is there a maximum number of characters one can user to protect ones key
- I notice restic stores the key inside of the repo whereas borg stores it on the local machine (if you specify this). While there may be some kind of ‘psychological assurance’ from knowing the key and the data are physically separate, as in the borg model, I believe the reality is the key(s) in a restic repo are well protected using best contemporary practices - and I’ll assume perfectly implemented Therefore perception aside, the difference in ‘risk’ is negligible. However can I ask, what were the reasons behind deciding to store the key(s) in the repo? I’m a decidely non-crypto guy so if the answer is technical, you’ve definitely got better things to do with your time and therefore feel free to pass on this question. It would be good though if someone could confirm that my assumption that the key management/protection risks are of negligible difference when it comes to restic vs borg.