[pass] Encrypt filenames in the store

franklin_wei franklin_wei at protonmail.com
Sun Feb 14 02:33:56 CET 2016


I'd like to propose a method for implementing this idea without destroying the whole idea behind pass. It goes as follows:

1) Every new password entry is stored in a sequential filename. (0.gpg, 1.gpg, etc.)
2) There is a single global, encrypted, "key" entry that contains a list of mappings from entry names to filenames.

This would make it difficult for an attacker to glean any meaningful information from password names, while still making it reasonably easy to manage passwords.

Thank you

Sent from [ProtonMail](https://protonmail.ch), encrypted email based in Switzerland.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.zx2c4.com/pipermail/password-store/attachments/20160213/ff069520/attachment.html>

More information about the Password-Store mailing list