Heard of that GPG is a "Better alternative" than OpenSSL.
# encryption
# this will prompt you password input & confirm
gpg --output encrypted.data --symmetric --cipher-algo AES256 un_encrypted.data
# decryption
# Never need you input password.(By default) this is why i don't think it is "Better"
gpg --output un_encrypted.data --decrypt encrypted.data# encryption
openssl aes-256-cbc -a -salt -pbkdf2 -iter 20000 -in secrets.txt -out secrets.txt.enc
# decryption
openssl aes-256-cbc -d -a -pbkdf2 -iter 20000 -in secrets.txt.enc -out secrets.txt.newOpenSSL is better. It's IMPORTANT to verify password EVERYTIME for ANYONE try to decrypt your secrets.