<html><head></head><body>Not realy a security specialist.<br>
But having your private key in an easy to photograph format doesn't sound that smart to me . .<br>
<br>
Anne Jan<br><br><div class="gmail_quote">On 20 June 2014 21:52:31 CEST, "Santiago Borrazás" <sanbor@gmail.com> wrote:<blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
<pre class="k9mail">Maybe this is not the best place to discuss this, but is it possible<br />to put your private key into a qr code? This could make pass tool<br />friendly across devices.<br /><br />I was thinking to put all my encrypted<br />passwords in a public github repo and be able to access to my<br />passwords from any device passing my private key from a qr code and then putting<br />my password to decrypt the private key.<br /><br />I would like to hear from security people if this it's viable or is<br />the worst idea ever.<br /><br />On Fri, Jun 20, 2014 at 11:12 AM, George Angelopoulos<br /><george@usermod.net> wrote:<br /><blockquote class="gmail_quote" style="margin: 0pt 0pt 1ex 0.8ex; border-left: 1px solid #729fcf; padding-left: 1ex;"> Adding to what Jonas suggested, instead of piping the password to<br /> qrencode, you could pipe it to a small script that would do<br /><br /> qrencode -o - | display -<br /><br /> Alternatively, have a separate
program/script assigned to a key<br /> combination that displays a qr code of your current clipboard, like this:<br /><br /> xclip -o -selection clipboard | qrencode -o - | display -<br /><br /> Maybe the above is useful in general, because any information on your<br /> monitors is 1 or 2 buttons away from a qrcode, and pass doesn't need to<br /> know about it.<br /><br /> On 06/20/2014 04:52 PM, Patrick Burroughs (Celti) wrote:<br /><blockquote class="gmail_quote" style="margin: 0pt 0pt 1ex 0.8ex; border-left: 1px solid #ad7fa8; padding-left: 1ex;"> I have no idea how common a use-case this might be, but I found it the<br /> most convenient way to interface with my phone while lacking an<br /> Android app. I don't see it as a mandatory dependency, any more than<br /> xclip is required to use pass if you don't want to send things to the<br /> clipboard.<br /><br /> I won't be disappointed if this is not accepted however, as I<br /> understand it's a little out there; I'll con
tinue
to maintain it<br /> locally in that case.<br /><br /> Regards,<br /> ~Celti<br /><br /> On Fri, Jun 20, 2014 at 12:36 AM, Jonas Wagner <j.b.w@gmx.ch> wrote:<br /><blockquote class="gmail_quote" style="margin: 0pt 0pt 1ex 0.8ex; border-left: 1px solid #8ae234; padding-left: 1ex;"> Hi,<br /><br /> is this really that common a use case? Supporting this will add a dependency<br /> on qrencode to pass.<br /><br /> In what way is this better than doing "pass foo/bar | qrencode"?<br /><br /> Cheers,<br /> Jonas<br /></blockquote><hr /><br /> Password-Store mailing list<br /> Password-Store@lists.zx2c4.com<br /> <a href="http://lists.zx2c4.com/mailman/listinfo/password-store">http://lists.zx2c4.com/mailman/listinfo/password-store</a><br /></blockquote><br /><hr /><br /> Password-Store mailing list<br /> Password-Store@lists.zx2c4.com<br /> <a href="http://lists.zx2c4.com/mailman/listinfo/password-store">http://lists.zx2c4.com/mailman/listinfo/password-store</a><br /></blockquo
te><hr
/><br />Password-Store mailing list<br />Password-Store@lists.zx2c4.com<br /><a href="http://lists.zx2c4.com/mailman/listinfo/password-store">http://lists.zx2c4.com/mailman/listinfo/password-store</a><br /></pre></blockquote></div><br>
-- <br>
Sent from my Android device with K-9 Mail. Please excuse my brevity.</body></html>