You have to put those somewhere, a system users env variables should be a good safe place afaik.
But in case they aren’t, maybe there’s some key managers out there, or you could keep them outside env variables and instead input the keys via terminal commands in your CI/deployment-system?
I often face the situation than I just need to login via SSH to the client server and do some quick Mysql queries or something similar, so I have to disappear without any clues :D
You have to put those somewhere, a system users env variables should be a good safe place afaik.
But in case they aren’t, maybe there’s some key managers out there, or you could keep them outside env variables and instead input the keys via terminal commands in your CI/deployment-system?
I often face the situation than I just need to login via SSH to the client server and do some quick Mysql queries or something similar, so I have to disappear without any clues :D
It might be me being drunk on a Thursday, but those kinda practices has gotten me in trouble before :D