pass-tomb
age
Our great sponsors
| pass-tomb | age | |
|---|---|---|
| 9 | 213 | |
| 366 | 15,264 | |
| - | - | |
| 7.1 | 5.5 | |
| about 2 months ago | about 1 month ago | |
| Shell | Go | |
| GNU General Public License v3.0 only | BSD 3-clause "New" or "Revised" License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
pass-tomb
-
KeePass is the free, open source, light-weight and easy-to-use password manager
By itself, Passwordstore will not encrypt file names or directory names, which might not be a problem if no one else has access to the machine that hosts your git repo, but if that's not the case (even if it's a private repo on whatever platform), you might want to use either Tomb or git-crypt-remote to have full end-to-end encryption. There are even some tools that glue tomb and pass together (https://github.com/roddhjav/pass-tomb for one), though I'm not sure what's the situation is like when it comes to mobile integration with tomb/git-crypt-remote.
- Vim: Warning: Input is not from a terminal - how to prevent with given command in script
- Clever uses of pass, the Unix password manager
-
Any self-hostable password managers worth using?
That can of course be fixed by using pass-tomb, but that isn’t implemented in mobile clients (at least not on iOS).
-
Using gpg + pass + tomb and yubikey for secrets management ?
- https://pujol.io/blog/tomb-with-gpg-keys/ - https://github.com/roddhjav/pass-tomb
- Pass: The standard Unix password manager
-
LastPass is finally a no-brainer to ditch: Bitwarden?
A plug-in called pass-tomb exists to fix this, but doesn’t work with mobile apps (a least not iOS)
age
- Age: A simple, modern and secure encryption tool
-
Joining ChatCraft.org
and echoing the result after converting to an age private key
-
What is the point of a public key fingerprint?
I like that https://github.com/FiloSottile/age has small public keys.
-
OpenPGP Forked into "LibrePGP" by GnuPG's Maintainer Werner Koch
> something fresh
It exists, it's called age..
Some random links
https://github.com/FiloSottile/age
https://www.reddit.com/r/crypto/comments/hr64hr/state_of_age...
https://github.com/FiloSottile/age/discussions/432
> (Acquiring keys, rotating keys, identifying compromised keys, and most importantly either reaches a large enough percentage of emails..
Oh nevermind, age doesn't do any of that. Indeed, it doesn't even do email https://github.com/FiloSottile/age/issues/93
-
An opinionated template for deploying a single k3s cluster with Ansible backed by Flux, SOPS, GitHub Actions, Renovate, Cilium, Cloudflare and more!
Encrypted secrets thanks to SOPS and Age
-
Prettier $20k Bounty was Claimed
I never heard of "Age" before this post. Thank you to share. If others are interested to learn more, here are two other interesting posts about Age:
https://github.com/FiloSottile/age/discussions/432
https://words.filippo.io/dispatches/age-authentication/
-
Cosmopolitan Third Edition
of all things I was able to resolve the issue via this github issue: https://github.com/FiloSottile/age/issues/370#issuecomment-1...
-
Would you trust a repository made like this to save your secrets?
Why keep something secret on a public repo? Is that not an oxymoron?
Also, I’m terms of encryption something like age[0] makes it much easier to not shoot yourself in the foot.
[0] https://github.com/FiloSottile/age
-
Looking For Encryption App
Why RSA specifically? For backups, I recommend Tarsnap. But if you really don't want to pay for encrypted cloud hosting, then check out age encryption.
-
OpenSSL and a rookie (me)
I wouldn't use OpenSSL personally. If you just need simple but secure symmetric encryption, checkout the scrypt(1) encryption utility from Tarsnap. If you need support for public keys, check out age(1).
What are some alternatives?
gopass - The slightly more awesome standard unix password manager for teams
sops - Simple and flexible tool for managing secrets
pass-grave - An extension for pass (the standard Unix password manager) to easily hide the metadata of the password store
Picocrypt - A very small, very simple, yet very secure encryption tool.
OpenKeychain - OpenKeychain is an OpenPGP implementation for Android.
rage - A simple, secure and modern file encryption tool (and Rust library) with small explicit keys, no config options, and UNIX-style composability.
passhole - A secure hole for your passwords (KeePass CLI)
age-plugin-yubikey - YubiKey plugin for age
Android-Password-Store - Android application compatible with ZX2C4's Pass command line application
minisign - A dead simple tool to sign files and verify digital signatures.
pash - 🔒 A simple password manager using GPG written in POSIX sh.