pass – the standard Unix password manager

This page summarizes the projects mentioned and recommended in the original post on news.ycombinator.com
PGP Security age-encryption Django secret-distribution

InfluxDB
Our great sponsors
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • WorkOS - The modern identity platform for B2B SaaS
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • passage

    A fork of password-store (https://www.passwordstore.org) that uses age (https://age-encryption.org) as backend.

  • sops

    Simple and flexible tool for managing secrets

    • i’ve used `pass` for 4-ish years now. i stopped last month. the interactions between pass and gpg-agent are too opaque for someone who’s not a regular PGP user. what happens when i let my PGP key expires? what’s the right way to share passwords between multiple machines — can i just clone the ~/.gnupg folder, do i need to `export` and then `import` the keys? should i create subkeys for each machine?

    i want my password manager to be decently transparent, because if i misunderstand its failure modes that’s a big deal.

    anyway, i’m using SOPS now [1]. it comes with a different set of tradeoffs (doesn’t integrate with keyrings quite as well as GPG does), but it’s way more transparent and pluggable. i generate distinct pubkey/privkey pairs per logical user and i can grant any subset of keys access to specific secrets. so e.g. my desktop and laptop can decrypt my banking secrets, but my phone cannot. i have a nightly backup cronjob which has to run unattended: i encode my Backblaze API key to the `duplicity` user’s privkey, and can safely check the encoded key into public repos and such. it’s simple and easy to grok. more so than pass, IMHO.

    1: https://github.com/mozilla/sops

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo

  • pstore

    Python Protected Password Store (django server + cli interface) using client side GPG encryption

  • gopassbridge

    A web extension for firefox and chrome to insert login credentials from gopass

    • I'm now using gopass as well, and it's great! Especially with https://github.com/gopasspw/gopassbridge, I get browser auto complete. And https://play.google.com/store/apps/details?id=dev.msfjarvis.... on Android with its password fill integration. It's the best of all worlds and entirely free.

    I even have my wife set up with the android app just in case something happens to me or she needs common passwords. She doesn't use it for her passwords yet, but baby steps.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts