[pass] symmetric key encryption
Jason A. Donenfeld
Jason at zx2c4.com
Tue Oct 16 02:01:54 CEST 2012
Use proper keys.
There is added security because you don't only need a "knows something"
(the passphrase), but there's also a "has something" (the key file).
There is also the added benefit of being able to insert without having to
enter a password.
Plus, gpg-agent.
Plus, this handles passphrase changes and key changes gracefully.
For distributed uses you have two options:
1) copy your private key to multiple machines
2) give each machine a separate public key, and use gpg's 'recipient group'
feature to initialize pass with a group name, where the group contains each
public key. Then each machine will be able to decrypt it using their key.
Read man pages to figure out how to do this.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.zx2c4.com/pipermail/password-store/attachments/20121016/d1eaedbf/attachment.html>
More information about the Password-Store
mailing list