What to do when someone leaves a team?

Ben Oliver ben at bfoliver.com
Thu Nov 8 13:55:20 CET 2018


On 18-11-08 12:41:36, Kevin Lyda wrote:
>You should assume they have all the passwords in pass. So you'd want to
>remove their gpg key - I think you just do that with git init and then a
>list of the gpg id's you want to keep. Then you need to change all your
>passwords.
>
>Kevin

Agreed, it's the only way to be sure. Even if you 100% know they don't 
have a copy (you don't!), it's still good practice to remove keys not in 
use.

Minor correction, it's pass init. So:

    pass init key1 key2 key3 etc
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: not available
URL: <http://lists.zx2c4.com/pipermail/password-store/attachments/20181108/bc058055/attachment.asc>


More information about the Password-Store mailing list