To Encrypt At Rest Or Not To?
There has been a lot of (passionate) debates on Joplin’s forum about its SQLite 3 database showing everything in clear text.
And by everything, I literally mean “everything”. Including your master encryption password.
Now, my intention here isn’t to fuel another debate. Joplin passed several security audits. Long story short: if you want your computer to remain safe (as much as possible), encrypt your whole hard-drive.
This is indeed a best practice.
Instead of discussing whether or not Joplin should encrypt its database, I’ll share the additional layer of security I laid out on my Linux machines using tomb.
By the way, if you have no idea what I’m talking about (what the hell is Joplin?), I suggest you read my previous post: From Evernote To Joplin.