← Back to context

Comment by jwgarber

2 days ago

Pass is great, but GPG keys are complicated and add a lot of extra overhead if you don't have one already. Frankly I cannot recommend anyone use GPG today for any purpose. I wrote a much simpler CLI password manager instead that meets explicit security models.

https://codeberg.org/jwgarber/napa/src/branch/main/database....

7 comments

jwgarber

Reply
upofadown  1 day ago

From the linked page:

> Notably, pass fails both of these requirements, ... , and the files themselves do not use authenticated encryption.

With pass you can turn authentication on by setting an option to sign the files by default. That comes at the cost of requiring an extra entry of the passphrase so most do not turn this on. Few people are concerned with the idea that an attacker might modify their passwords so they don't work. There is no real benefit to an attacker. They could just delete the files.

Even if signatures are not turned on the regular PGP integrity protection would still be in effect so in the unlikely event that an attacker changed the file an error would be generated and presumably passed on to the user.

  • jwgarber  21 hours ago

    This article goes into some of the deficiencies of using GPG with pass. In particular, GPG uses asymmetric keys, so someone could encrypt a new password file with your public key and you wouldn't know.

    https://rot256.dev/post/pass/

    • upofadown  20 hours ago

      Yes, that is specifically what enabling signatures prevents. You would know when the stored password stopped working and the content of the rest of the file changed.

      That article is fairly rough. For one thing it references "The PGP Problem":

      * https://articles.59.ca/doku.php?id=pgpfan:tpp

      For another thing it references "the quantum threat against cryptography" as an actual argument against password store.

      1 reply →

    • wkat4242  15 hours ago

      Well yes but this is also a feature: you can store passwords without having the private key available. That can be handy.

      I don't really see the value in an attacker being able to store new passwords anyway. Besides, in order to do that they'd already have to have breached my private git server too.

mongol  2 days ago

This is interesting. But does this program have some model or approach for using it in several devices? Is the database syncable in some way, or would you need to remote in to the master location to run it?

  • jwgarber  21 hours ago

    For use with multiple devices you can copy the database file to each of them, a smarter approach using syncing is very complicated and not one I considered here.