Feature Proposal
Matthieu Fronton
m at tthieu.fr
Tue Jun 6 12:34:39 CEST 2017
Le ven. 2 juin 2017 à 21:05, Frank Grüllich <frank.gruellich at gmail.com> a
écrit :
> On Fri, Jun 02, 2017 at 07:42:26AM +0000, Matthieu Fronton wrote:
> > Le ven. 2 juin 2017 à 07:42, Frank Grüllich <frank.gruellich at gmail.com>
> a
> > écrit :
> > > > [store raw file]
> > > What's the big advantage over
> > >
> > > % pass insert --multiline "some/path/to/secret" < secret.data
> > >
> > > ?
> > I have to admit I didn't think about in the first place... :)
> > But I also believe this is more a workaround than a native feature.
>
> That workaround enables some nice tricks, eg.:
>
> % openssl genrsa 2048 | pass insert --multiline "some/path/to/
> www.example.com.key"
> % pass "some/path/to/www.example.com.key" | openssl req -new -key
> /dev/stdin -out "www.example.com.csr" -subj "/CN=www.example.com"
>
> which stores/uses they secret key almost directly in/from a safe place
> (and does not create a useful CSR, of course). Your implementation
> enables (if not encourages) the user to put the key on some potential
> unsafe storage.
>
>
Nice one.
End of topic :)
Thanks
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.zx2c4.com/pipermail/password-store/attachments/20170606/564c608f/attachment.html>
More information about the Password-Store
mailing list