I would love to have this optional feature in restic where you must provide both keyfile and a password to encrypt/decrypt the backup. As a reference… KeePassXC has this feature.
Are there any chances for implementing that?
Thanks guys! Love restic!
--password-command can be used to achieve this with a script which processes the keyfile and the password.
I was more thinking about a built in feature, where you can provide the keyfile in the command line and additionally have to provide the password in a prompt.
But thanks for your input.
--password-command is a much more platform neutral way of doing that, so that’s the way. There’s no point in writing something more specific in restic that doesn’t lend itself to pretty much any keybased system that you might have.