On Tue, 26 Jan 2021, at 11:15, Frank Grüllich wrote: > Injecting it via env var is *slightly* more secure.
If you can switch from using a password to using a bearer token, then the slightly even more secure option is https://rclone.org/webdav/#webdav-bearer-token-command: rclone sync --webdav-bearer-token-command "pass show path/to/webdav/token" … People who don’t use password managers still make the distinction between a memorisable “password” and a random string “token”, and design a different interface for each of them. 🤷
