We're currently invstigating using pass and it looks ideal for our needs - however we're going down the route of having a single store accessed by multiple people (signing using a gpg 'group id') and have a hit a problem. pass sets the umask to 077 by default, which means we can't preserve group access.
To this end, I've attached a simple patch which allows the umask to be overridden in an environment variable. Cheers, Matthew -- The University of Edinburgh is a charitable body, registered in Scotland, with registration number SC005336.
--- /usr/bin/pass 2013-11-20 12:41:42.000000000 +0000 +++ /usr/bin/pass.new 2013-11-20 12:42:02.000000000 +0000 @@ -3,7 +3,8 @@ # Copyright (C) 2012 Jason A. Donenfeld <[email protected]>. All Rights Reserved. # This file is licensed under the GPLv2+. Please see COPYING for more information. -umask 077 +UMASK="${PASSWORD_STORE_UMASK:-077}" +umask UMASK PREFIX="${PASSWORD_STORE_DIR:-$HOME/.password-store}" ID="$PREFIX/.gpg-id"
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Password-Store mailing list [email protected] http://lists.zx2c4.com/mailman/listinfo/password-store
