pass Reviews and details

Social recommendations and mentions

• The notes field in iOS keychain items and the comments field in macOS keychain items are not the same thing

  Not sure of your technical chops... But I use passwordstore.org between all my devices (iOS/MacOS/Linux) that is PGP backed, and I sync them via a bare git repo I host. Does TOTP, text, password generation, etc... Source: about 2 years ago

• LastPass Shouldn't Be Trusted With Your Passwords

  If you're in a technical role you should be using https://passwordstore.org. Source: about 2 years ago

• What should I install on my extra laptop?

  You could host your home server for: VPN, passwordstore.org (how?), git, cloud, probably more. Source: about 2 years ago

• Ok, I may have gone on a little rant the other day but someone suggested I ask for help... So I'm asking for help.

  And if you'd like to store the token encrypted in password store, there's a helper for that: pass git helper. Source: about 2 years ago

• How to prevent 2FA + pw vault deadlock lock-out

  My password manager is secured using GPG. It's encrypted with two keys, one of which lives on my Yubikey (to access my passwords on my phone) and the other of which is on my desktop (as a backup). Presumably, the only way I'd get locked out is if my Yubikey is lost/stolen/broken and my desktop stops working and my local backups aren't working. In other words, not very likely at all. Source: almost 3 years ago

• Your Phone May Soon Replace Many of Your Passwords

  Agreed that it's not as secure, however there's still some scenarios it protects against https://security.stackexchange.com/questions/150448/is-it-secure-to-store-a-two-factor-authentication-seed-in-a-password-manager. The alternative would be that I would have lost access to all of my accounts with TOTP enabled on them. I use passwordstore as a password manager with an OpenPGP smartcard to decrypt. The PGP key... Source: almost 3 years ago

• Vaultwarden vs KeePassXC

  Passwordstore.org and your own bare git repo. Source: about 3 years ago

• TOTP and password manager protected by the same yubikey a good idea?

  Although my setup is a little different, it amounts to the same result. My passwords are protected via public key cryptography and I use the smartcard function of the yubikey to decrypt the passwords I need (passwordstore.org). This entails typing a short pin and touching the yubikey. Source: over 3 years ago

• My account in the Bridge app disappear each time I reboot

  Ensure you have pass (from passwordstore.org) configured or gnome-keyring or the KDE equivalent running. The Bridge uses those services to store the ProtonMail Bridge credentials securely. Source: over 3 years ago

• Where have I used my protonmail account?

  I personally use pass, but I know BitWarden is fairly popular around here. I'd say whatever you use, make sure it is open source and that you can secure it with 2FA (2-factor authentication), especially if your database will be stored in the cloud. Source: over 3 years ago

• and then there is me with explorer

  Also you should use a good password manager. I reccomend pass https://passwordstore.org. Source: over 3 years ago

• pinentry slows down all of a sudden.

  Hello. I've tried almost* everything to get gpg up and running but it just, won't work! So, storytime. Almost after I went full linux I stumbled upon pass, a great tool to manage passwords in a convenient way. I've been using it for around 8-9 months. And it's worked like a charm, until about 3 weeks ago. I don't know if this was a system upgrade or something but point is, it just slowed way down. When requesting... Source: over 3 years ago

• Is there a way to use iCloud keychain on chrome and other apps on macbook? If not how do you manage your passwords

  Passwordstore.org hosted on your own git repo. Source: almost 4 years ago

• Safest way to have my notes accessible anywhere?

  I use passwordstore.org synced to my own personal git repo. I keep notes, passwords and other secured data sources. Source: almost 4 years ago

• Password generator like Dashlane

  Proton Technologies already have enough on-going projects (ProtonMail, ProtonVPN, ProtonDrive, ProtonCalendar). Adding yet another one is probably not the right timing for it, as there are lots of people waiting for the new v4 architecture to be released on all device platforms. And especially when there are already reasonable open source alternatives out there, like Bitwarden, KeePass (with all the variations... Source: almost 4 years ago

• Browser extension for password manager. Good or Bad?

  I use pass without any browser extensions. Source: almost 4 years ago

• Kubernetes best practices generally and for organizing my stuff

  For secrets I use passwordstore.org. Which is just pass command line utility. It stores it's secrets in GPG encrypted files that are checked into it's own git repo. Source: about 4 years ago

• Solokey v2 - A fully open source FIDO2 security key for two factor authentication and passwordless login

  Quite good, I use it all the time. My primary GPG keys are on my Yubikey and I use it to sign emails and encrypt my password store (along with a backup GPG key, ofc). Source: about 4 years ago

• Where do you store your 2FA recovery codes?

  I store them in my password manager. I also backup my Aegis database to my laptop, so I always have at least 2 different devices from which I can obtain codes. Source: about 4 years ago

• Switching from Lastpass but to what?? Help please!

  Passwordstore.org and host it on your own git repo. Source: about 4 years ago