Group sharing security

Konstantin Ryabitsev konstantin at linuxfoundation.org
Wed Jun 14 18:09:39 CEST 2017


On Wed, Jun 14, 2017 at 06:04:13PM +0200, Jason A. Donenfeld wrote:
>From the pass(1) man page section on environment variables:
>
>       PASSWORD_STORE_SIGNING_KEY
>             If this environment variable is set, then all .gpg-id
>files and non-system extension files must be signed
>             using a detached signature using the GPG key specified by
>the full 40 character upper-case fingerprint in
>             this variable. If multiple fingerprints are specified,
>each separated by  a  whitespace  character,  then
>             signatures must match at least one.  The init command
>will keep signatures of .gpg-id files up to date.

Ah-ha, that's what I get for looking at my local man instead of the 
latest. Unfortunately, looks like Fedora 24 has pass-1.6.3, not 1.7. :(

Thanks for having already thought of that between Fedora-24 and now. :)

-K


More information about the Password-Store mailing list