<html><head></head><body>I thought the same, but implementing it is a real pain in the ass.<br>
<br>
I'm currently working on something I'll send soon, and then I'm gonna work on an extension to do just that :)<br>
<br>
Cheers!<br><br><div class="gmail_quote">On February 4, 2017 2:50:46 PM GMT-03:00, Adam Spiers <pass@adamspiers.org> wrote:<blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
<pre class="k9mail">Hi all,<br /><br />I was delighted to discover this project recently. It seems to be<br />almost exactly the perfect solution needed to avoid the unpleasant<br />situation of being reliant on a proprietary password manager.<br /><br />There is one feature which I consider pretty essential, and as far as<br />I can see, it's not supported by pass yet, which is to keep the entire<br />metadata encrypted, including the directory names and file names.<br />Without this it doesn't seem to provide 100% privacy protection, since<br />for example it potentially exposes which websites you use. Is that<br />right, or am I missing something?<br /><br />If I'm right, would this be an easy thing to solve architecturally?<br />For example, the directory names and file names could be converted<br />into some kind of digest (e.g. SHA-256), and then a mapping between<br />digests and the original names could be tracked in a separate<br />encrypted file at the top level of the store.<br /><br />Thanks!<br />Adam<br /><hr /><br />Password-Store mailing list<br />Password-Store@lists.zx2c4.com<br /><a href="https://lists.zx2c4.com/mailman/listinfo/password-store">https://lists.zx2c4.com/mailman/listinfo/password-store</a><br /></pre></blockquote></div><br>
-- <br>
HacKan || Iván<br>
GPG: 0x35710D312FDE468B</body></html>