[pass] reencryption: only happens when required now

Brian Shore brian at networkredux.com
Tue Apr 22 20:00:17 CEST 2014

On Tue, Apr 22, 2014 at 10:47 AM, Brian Shore <brian at networkredux.com> wrote:
> On Tue, Apr 22, 2014 at 10:18 AM, Jason A. Donenfeld <Jason at zx2c4.com> wrote:
>> Good point. Now pass realizes this automatically. Simply call "pass init
>> group-id" like before, and it will automatically check if the group has
>> changed or not.
> This will probably work for everyone but me.  I use GPG's throw-keyids
> directive, so when you try to fetch the "current" keys from a given
> encrypted file, they all show up as all zeros.
> If you want to go ahead and remove the reencrypt parameter from init,
> I can just maintain a local patch (git stash for the win!).  I have no
> idea how many pass users use throw-keyids, but I imagine the number is
> pretty small.

Another possibility is that I could switch to the team pass features
instead of the gpg group.  I haven't had a chance to try them out yet,
but I don't see any reason I couldn't discard the gpg group

Brian Shore
Senior Systems Engineer, Security Architect
Network Redux, LLC
5200 SW Macadam Ave Ste 450
Portland, Oregon 97239
Desk:  503-274-9905 x503

More information about the Password-Store mailing list