|
Recommendations for a Password Manager on Slackware
I'm looking for recommendations for a stand-alone password manager for Slackware.
The most common I've seen around the web are: - KeepassXC - Buttercup - Bitwarden - LastPass Keepass and Lastpass are the only two I've heard about over the years but never used to date. Any recommendations/comments would be greatly appreciated. TIA |
I've used KeePass and KeePassXC - currently using the latter (on current). Both do the job. The one thing that I like about KeePassXC, and why I settled on it - it doesn't require mono.
|
|
I personally use Bitwarden [1]. It is good and has apps for major systems you can get. However, it is a client - server system and that's definitely not standalone.
[1] Actually I use unofficial rust implementation called vaultgarden. I run it on my server and access it from my machines. It is small and can use sqlite as DB hence it is quite well fitting for small users like me. https://github.com/dani-garcia/vaultwarden |
You can easily try them. Or do you want to use what I like? (keepassxc)
|
I can't recommend password-store highly enough. Along with having a sane structure, having excellent autocompletion, and being effectively future-proof (password-store is basically a porcelain for gpg and git), it's also got a dmenu interface, a Firefox plugin, an Emacs package, third-party Android and iOS apps, and a host of community-maintained plugins - OTP, tomb, various tools to migrate passwords from other databases, the Firefox plugin as mentioned ... It leverages git for version control, so you can go back in time to see e.g. old removed passwords you didn't realise you still needed, and you can distribute your repository easily using the same tools you would with git. If you want to maintain a password manager on both your computer and phone without passing KeePass files around, this is a great way of doing it. I've had my password-store on my laptop, home server, and iPhone for about 3 years now.
I think the only thing that can really be said against it is that the database might leak metadata about your online profile, since the database is really just a directory structure under $HOME/.password-store with encrypted files named whatever you like - it effectively lists all your online accounts if you use it in that way, and anyone with a copy of these files can see this in plain text. There are plenty of ways to work around this though, including encrypting your HDD at rest and locking your computer when you're away from it, or by using pass-tomb to encrypt the entire database and only unlock it for time-limited intervals while you're using it. Also, although in principle it would work great for team-based arrangements since it's so easy to distribute, since it's really just a git repository you can't realistically revoke access for anyone, so I would never honestly suggest it for that. It's awesome for personal use though. Edit: also I use KeePassXC at work just because I’ve been using it for 5+ years and it works very well, but as I mentioned it doesn’t lend itself to my own workflow with computer and mobile device |
Quote:
|
Quote:
|
KeepassXC. Thanks for the password-store suggestions.
|
Thanks all.
I've installed Alien Bob's keepassxc-2.6.6-x86_64-1alien.txz mostly for the keepass-cli Looks like there is more to look at :) -- kjh |
I use KeePassXC, keepassxc-browser plugin for firefox, KeePass DX on Android.
|
Quote:
|
Quote:
|
Quote:
The 'generate' command is nice to produce secure passwords also. |
Quote:
You can see that the password-store.sh script checks if wayland is running and defaults to commands from wl-clipboard, if its found on the system. This commit shows the relevant code: https://git.zx2c4.com/password-store...edf5938219a9b7 Edit: Doesn't appear to be in Slackware. I guess it could be added as an optional dependency to the slackbuilds.org build of password-store. |
Thanks everyone for the recommendations and comments. I hadn't heard about password-store,will look into it. I also downloaded the KeepassXC AppImage from the website to try it out. It's pretty functional and certainly looks like it will do the job.
|
Quote:
|
Quote:
password-store will work in wayland after installing that package. The password-store readme should also be updated by next weekend to mention wl-clipboard is needed for wayland. Happy slackin |
Quote:
Code:
passmenu --type -fn 'Liberation Mono-24' -p "pass: " |
1 Attachment(s)
I have been using KeePass for a long time. It has a lot of features. My favorite is Password profiles. Quite a few sites I use have very specific password requirements.
Example: Code:
The PASSWORD must:Code:
!"#$%&'()*+,-./:;<=>?@[\]^_`{|}~The draw back to KeePass is it needs mono installed. For me that is not a problem. I also use an Android App called Keepass2Andriod that works with KeePass to files. I have the password file in the cloud so I can access it via all of my devices. Using a password profile for the picky password sites make life simple. When I need to change my password, I select the profile needed and a new password is generated that fits the requirement. |
Quote:
Kwallet is included with KDE, but I always personally disable it. |
Quote:
|
Quote:
|
Quote:
I used to think the same back when only a few password were needed. These days with 244 unique password in my password database. It is not a simple task to maintain these. A password manager greatly simplifies this task. The passwords are stored in a encrypted database that is separate from the program. In my case by using KeePass there are alternative programs that can read this database. I use two separate programs, one for the computer one for my cell phones. Programs are compatible with the database. Backups of database is mandatory (my opinion). If key files are being used, multiple back up copies of the key file is a must. Loose the key file and all is lost with out a back up copy. I learned this the hard way a long time ago. |
| All times are GMT -5. The time now is 10:05 PM. |