🆕 Software Suggestion | Pass #1648

New Issue

2020-01-10T11:40:04Z

FishCoding commented

2020-01-10 11:40:04 +00:00

(Migrated from github.com)

Basic Information

Name: Pass
Category: Password Manager
URL: https://www.passwordstore.org/

Description

It is a password manager that basically uses GPG keys as a method of encryption and decryption and contain all the password in a git repository (password storage).

## Basic Information **Name:** Pass **Category:** Password Manager **URL:** https://www.passwordstore.org/ ## Description It is a password manager that basically uses GPG keys as a method of encryption and decryption and contain all the password in a git repository (password storage).

ghost commented

2020-01-28 15:28:05 +00:00

(Migrated from github.com)

I'm surprised pass was not listed here. @Mikaela I could help with research on this. It's a simple password manager which uses existing tools, each entry is a gpg encrypted file store in pass root directory ($HOME/.passwordstore is default).

Example tree:

Password Store
├── service1.org
│   ├── accounts
│   └── email
├── service2.com
│   └── www
├── Bank
│   └── bank1

Other users having access to pass root directory (which they shouldn't have, it should be rwx------) can read services names.

I'm surprised pass was not listed here. @Mikaela I could help with research on this. It's a simple password manager which uses existing tools, each entry is a gpg encrypted file store in pass root directory ($HOME/.passwordstore is default). Example tree: ``` Password Store ├── service1.org │ ├── accounts │ └── email ├── service2.com │ └── www ├── Bank │ └── bank1 ``` Other users having access to pass root directory (which they shouldn't have, it should be rwx------) can read services names.

FishCoding commented

2020-01-28 15:34:33 +00:00

(Migrated from github.com)

It also has several plugins to for example be less permissive with the folder hierarchy encrypting the folder tree and more. Other plugins allow generating 2FA codes.

In the overall, it's not more than a bash script for encrypting and decrypting the passwords with the gpg pair keys.

It also has several plugins to for example be less permissive with the folder hierarchy encrypting the folder tree and more. Other plugins allow generating 2FA codes. In the overall, it's not more than a bash script for encrypting and decrypting the passwords with the gpg pair keys.

Mikaela commented

2020-01-30 13:03:07 +00:00

(Migrated from github.com)

Would any of you mind making a PR?

@privacytoolsIO/editorial and would any of you mind researching this? I imagine it's encryption should be OK if it really does use GPG for that.

Would any of you mind making a PR? @privacytoolsIO/editorial and would any of you mind researching this? I imagine it's encryption should be OK if it really does use GPG for that.

dngray commented

2020-01-30 15:27:12 +00:00

(Migrated from github.com)

I actually use pass already, for mbsync, msmtp, vdirsyncer It's really quite good.

This repo is archived. You cannot comment on issues.