[pass] reencryption: only happens when required now
Brian Shore
brian at networkredux.com
Tue Apr 22 20:00:17 CEST 2014
On Tue, Apr 22, 2014 at 10:47 AM, Brian Shore <brian at networkredux.com> wrote:
> On Tue, Apr 22, 2014 at 10:18 AM, Jason A. Donenfeld <Jason at zx2c4.com> wrote:
>> Good point. Now pass realizes this automatically. Simply call "pass init
>> group-id" like before, and it will automatically check if the group has
>> changed or not.
>
> This will probably work for everyone but me. I use GPG's throw-keyids
> directive, so when you try to fetch the "current" keys from a given
> encrypted file, they all show up as all zeros.
>
> If you want to go ahead and remove the reencrypt parameter from init,
> I can just maintain a local patch (git stash for the win!). I have no
> idea how many pass users use throw-keyids, but I imagine the number is
> pretty small.
Another possibility is that I could switch to the team pass features
instead of the gpg group. I haven't had a chance to try them out yet,
but I don't see any reason I couldn't discard the gpg group
definition.
--
Brian Shore
Senior Systems Engineer, Security Architect
Network Redux, LLC
5200 SW Macadam Ave Ste 450
Portland, Oregon 97239
Desk: 503-274-9905 x503
More information about the Password-Store
mailing list