mirror of
https://github.com/ryan4yin/nix-config.git
synced 2026-01-11 14:20:23 +01:00
1.6 KiB
1.6 KiB
Password Manager
- https://www.passwordstore.org/
- awesome-password-store
- https://github.com/gopasspw/gopass: reimplement in go, with more features.
- Clients
- Android: https://github.com/android-password-store/Android-Password-Store
- Brosers(Chrome/Firefox): https://github.com/browserpass/browserpass-extension
How to change the gpg key of the pass password store?
To ensure security, we should change the GPG key every two or three years. Here is how to do this.
-
Create a new GPG key pair and backup it to a safe place.
-
Ensure you can access both the old and new GPG keys.
-
Update
./default.nixto use the new GPG sub keys. -
Check which Key
passcurrently uses:cd ~/.local/share/password-store/ # check which key is used by pass cat .gpg-id # check which key is really used to encrypt the password gpg --list-packets path/to/any/password.gpg -
Change the key used by
pass:# change the key used by pass, see `man pass` for more details # you will be asked to enter the password of both the new and old keys # then pass will re-encrypt all the passwords with the new key pass init <new-key-id> -
Check if the key is changed:
# check which key is used by pass cat .gpg-id # check which key is really used to encrypt the password gpg --list-packets path/to/any/password.gpg -
Delete the old GPG key pair:
# delete the old key pair gpg --delete-secret-keys <old-key-id> gpg --delete-keys <old-key-id>