Pass

From Wildsong
Revision as of 22:06, 25 April 2023 by Brian Wilson (talk | contribs)
Jump to navigationJump to search

Today I found out about Pass when looking at credential storage for Docker so I am going to try it out.

Psono is what I use right now. I have been using the Psono password manager for several years. Good: Works on computers, Linux, Windows, and Android phones and tablets. Works at home and at work and out on the road. Runs on my own computer. Bad: I dislike having to run a complete database (MySQL) just to store a table with a few hundred entries. I always worry about recovery if something changes.

Can I use Pass the same way?

  • Is there a Web UI?
  • There is this cross-platform app QTPass.
  • Can I store metadata in it? (In a Notes field, for example)
  • Is there a browser add-on for it? Is it any good? For Chrome or Firefox, try browserpass. For Firefox there is passff.
  • Can I use it on my tablet? (My phone is a Sunbeam F1!)
  • Does it store passwords some way that would allow recovery (but only by me?) Yes, they are GPG encrypted files in ~/.password-store/
  • Would it be practical to have two stores, one at work and one at home? Completely separate. Well, yes, you can keep separate stores and copy the files. Not sure if that's good or bad yet. You can use Github as a data store too.
  • What happens when I die? (I don't mean "is there a heaven", I mean where does it leave Julie?)

Obviously this started because I wanted a better store for Docker. So I will set it up for that anyway but it would be nice to have a one-stop-shopping experience.

Set up

https://www.howtogeek.com/devops/how-to-use-pass-a-command-line-password-manager-for-linux-systems/

First, set up Pass. Then add the credential helper for Docker. Then worry about all the Q's above. I need it for Docker. 

sudo apt-get install pass
pass init bwilson

Create a master passphrase using gpg encrypt. 

gpg --full-gen-key

Create a password and store it. 

pass insert bellman
pass list
pass show personal/bellman

Another wrinkle is to store the Pass data in a Tomb using this pass-tomb add on. I'll think about it. Okay, never mind. Not interested. More interested in storing in a git repo.

Git Helper https://github.com/languitar/pass-git-helper

QTPass

Windows: https://carson.fenimorefamily.com/?p=369 

choco install gnupg pwgen qtpass

Linux: apt install qtpass

Mac: don't care, because I installed Linux on all my Macs.

Retrieved from "https://wiki.wildsong.biz//index.php?title=Pass&oldid=13771"