or "heavily encrypted" (using configuration encryption)
So my first question is: why can't we have it "raw"? I fully trust the computer that I run rclone, I don't trust the remotes ;-; And I am super scared of forgetting my password.
Second, if we can have it "raw", how? Is there some sort of experimental flag that I can turn on?
well, two different things, one has nothing to do with the other.
crypt password(s) are stored in obscured forum, not encrypted.
very easy to de-obscure them.
by default, the config file is a plain text file. if someone gets the text file, they can easily steal the contents.
optionally, to protect against that, can encrypt the entire config file with a password.