How I Protect Secrets In Terraform Configurations
I have already touched on the importance of Terraform state in a previous post, but I wanted to expand on this from a security perspective.
Let’s get this out the way now, Terraform stores secrets in its state file in plain text! There I said it.
So how do I protect against secrets being revealed that could allow an attacker to compromise my systems? Well, I use a defence in depth strategy in a number of ways.
Continue Reading...