Our great sponsors
-
keepassxc
KeePassXC is a cross-platform community-driven port of the Windows application “Keepass Password Safe”.
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
There are apps for mobile devices, some sync with a GitHub repository (which you should make private): https://www.passwordstore.org/#:~:text=password%20(OTP)%20to...
The contents of the GitHub repo are of course encrypted with your own key, which you need to manually sync to your other devices.
Maybe an overkill, but i use cryptomator, which encrypts the files, the files are synchronized with nextcloud of remote location, but i suppose you can use whatever software you want. Inside that there is a https://keepassxc.org/
Have a look at unison, it's what I use instead of Syncthing and I couldn't be more happy.
https://github.com/bcpierce00/unison
edit: Also, KeepassXC!
Yes, it's a service to keep files on your devices in sync with one another. https://syncthing.net/
> They do lack Linux support
That is true although I understand this is simply down to lack of user demand for it.
There appears to be an UNOFFICIAL linux tool called Read-Codebook[1] though...
[1]https://github.com/teracow/read-codebook
The other difficulty is it appears there is little-to-no support for API/automation:
https://github.com/lastpass/lastpass-cli/issues/602
https://github.com/lastpass/lastpass-cli/issues/624
https://github.com/lastpass/lastpass-cli/issues/604
...their CLI tool is de-facto deprecated (unsupported) and has several unreliability issues (ie: `lpass ls/userls ...` reports differing amounts of values depending on when a user was added to the folder or not). Basically `lpass ls ... | xargs -n1 ...` cannot be trusted, and you can only get an accurate list of passwords (or users) from the actual GUI.
It makes automation, auditing, reporting, near impossible.
I love web scraping, maybe I can update this prior idea. With the high proliferation of botting, a lot of sites are now resistant to this type of scripting, but at this low volume of interaction, it may be doable with some effort like Undetected Chromedriver.
https://drewdevault.com/2017/05/11/Rotating-passwords.html
https://github.com/tsudoko/pass-rotate