I have personal files that I don’t want anyone at work to ever have access to. I want to keep everything in one vault and just exclude the personal files from the sync on my work computer. However, it seems that anyone with access to my work computer could just open Obsidian, go into the settings, and delete the excluded folders… Then they all sync right over! Why isn’t that password protected? Am I missing something? Is there a way to require a password before editing the synced folders?
- This sounds like a good feature request, and a valid security concern. (At least at first.)
- But… I recommend you lock your work computer if you aren’t already.
- I also recommend that if you have sensitive information you never want people at work to have access to – including IT or anyone who could access your locked computer – then you should definitely keep separate vaults. Don’t store personal information in your work vault. Period.
I wouldn’t even trust a password on excluded folders, because it would likely still be possible just to find the settings file that stores the list of excluded folders. (Maybe not. I don’t know where that is stored.) Or if someone renames the folder externally, does the setting lose track and sync that new folder? Why take the chance at all?
I think excluded folders is just for space-saving concerns, not for security concerns.
1 Like