yubitouch
pass-tomb
Our great sponsors
yubitouch | pass-tomb | |
---|---|---|
1 | 9 | |
155 | 366 | |
- | - | |
0.0 | 7.1 | |
about 3 years ago | about 2 months ago | |
Shell | Shell | |
BSD 2-clause "Simplified" License | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
yubitouch
-
Clever uses of pass, the Unix password manager
Here's a script that will set that mode, in case you'd like to use it. It prevents someone/malware from being able to use your key after you've unlocked it. For example if you hacked my computer and tried to use it to ssh to another machine you'd be unable because you'd need me to tap the key.
I'd suggest trying 'on' before 'fix', but then switching to 'fix' for the extra security it provides.
https://github.com/a-dma/yubitouch
pass-tomb
-
KeePass is the free, open source, light-weight and easy-to-use password manager
By itself, Passwordstore will not encrypt file names or directory names, which might not be a problem if no one else has access to the machine that hosts your git repo, but if that's not the case (even if it's a private repo on whatever platform), you might want to use either Tomb or git-crypt-remote to have full end-to-end encryption. There are even some tools that glue tomb and pass together (https://github.com/roddhjav/pass-tomb for one), though I'm not sure what's the situation is like when it comes to mobile integration with tomb/git-crypt-remote.
- Vim: Warning: Input is not from a terminal - how to prevent with given command in script
- Clever uses of pass, the Unix password manager
-
Any self-hostable password managers worth using?
That can of course be fixed by using pass-tomb, but that isn’t implemented in mobile clients (at least not on iOS).
-
Using gpg + pass + tomb and yubikey for secrets management ?
- https://pujol.io/blog/tomb-with-gpg-keys/ - https://github.com/roddhjav/pass-tomb
- Pass: The standard Unix password manager
-
LastPass is finally a no-brainer to ditch: Bitwarden?
A plug-in called pass-tomb exists to fix this, but doesn’t work with mobile apps (a least not iOS)
What are some alternatives?
gopass - The slightly more awesome standard unix password manager for teams
pass-coffin - A password store extension to hide data inside a signed and encrypted coffin
pass-grave - An extension for pass (the standard Unix password manager) to easily hide the metadata of the password store
lastpass-cli - LastPass command line interface tool
age - A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability.
hunter2 - The "hunter2" password manager is a simple script-oriented password manager.
OpenKeychain - OpenKeychain is an OpenPGP implementation for Android.
systemd - The systemd System and Service Manager
passhole - A secure hole for your passwords (KeePass CLI)
pass-import - A pass extension for importing data from most existing password managers
Android-Password-Store - Android application compatible with ZX2C4's Pass command line application