pass – the standard Unix password manager

This page summarizes the projects mentioned and recommended in the original post on news.ycombinator.com

Our great sponsors
  • talent.io - Download talent.io’s Tech Salary Report
  • Scout APM - Truly a developer’s best friend
  • SonarLint - Clean code begins in your IDE with SonarLint
  • InfluxDB - Build time-series-based applications quickly and at scale.
  • passage

    A fork of password-store (https://www.passwordstore.org) that uses age (https://age-encryption.org) as backend.

  • sops

    Simple and flexible tool for managing secrets

    i’ve used `pass` for 4-ish years now. i stopped last month. the interactions between pass and gpg-agent are too opaque for someone who’s not a regular PGP user. what happens when i let my PGP key expires? what’s the right way to share passwords between multiple machines — can i just clone the ~/.gnupg folder, do i need to `export` and then `import` the keys? should i create subkeys for each machine?

    i want my password manager to be decently transparent, because if i misunderstand its failure modes that’s a big deal.

    anyway, i’m using SOPS now [1]. it comes with a different set of tradeoffs (doesn’t integrate with keyrings quite as well as GPG does), but it’s way more transparent and pluggable. i generate distinct pubkey/privkey pairs per logical user and i can grant any subset of keys access to specific secrets. so e.g. my desktop and laptop can decrypt my banking secrets, but my phone cannot. i have a nightly backup cronjob which has to run unattended: i encode my Backblaze API key to the `duplicity` user’s privkey, and can safely check the encoded key into public repos and such. it’s simple and easy to grok. more so than pass, IMHO.

    1: https://github.com/mozilla/sops

  • talent.io

    Download talent.io’s Tech Salary Report. Median salaries, most in-demand technologies, state of the remote work... all you need to know your worth on the market by tech recruitment platform talent.io

  • pstore

    Python Protected Password Store (django server + cli interface) using client side GPG encryption

  • gopassbridge

    A web extension for firefox and chrome to insert login credentials from gopass

    I'm now using gopass as well, and it's great! Especially with https://github.com/gopasspw/gopassbridge, I get browser auto complete. And https://play.google.com/store/apps/details?id=dev.msfjarvis.... on Android with its password fill integration. It's the best of all worlds and entirely free.

    I even have my wife set up with the android app just in case something happens to me or she needs common passwords. She doesn't use it for her passwords yet, but baby steps.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts