I'm a Windows user trying to wrap my head around Linux, and lately that means following behind people on Raspberry Pi projects.
I've noticed that there are applications that require me to enter the username and password into their config file for them to access things as that user. Samba/CiFS/NTFS-3g and Deluge being examples.
In Windows, things like services (aka daemons) can run under the Local System account (different links), or a variety of other accounts.
It seems strange, and inherently insecure, to put passwords in text files as plain text. Yet, I'm always hearing about how Linux is supposed to be more secure than Windows.
How can you securely pass credentials to random applications in Linux/Raspbian? Are the security models so different that this is mitigated in some other manner? How do I keep track of (or update) what programs I put in a static password?
Am what I am looking for a "keyring"? Something described here.
This questionThis question is similar, but asks about the OS and I'm referring to applications.
