Re: Clipboard

2019-06-09 Thread Andrew Beyer 
I'm pretty sure this is expected...as Jacob says, X11 has multiple
different paste sources (selections). Middle-click almost always uses the
primary selection, which is different from the clipboard selection which
pass's use of xclip defaults to if not otherwise specified.

I believe you can override with PASSWORD_STORE_X_SELECTION

On Sun, Jun 9, 2019 at 1:58 PM Jacob MacDonald  wrote:

> I don't use XFCE or use middle-click paste, but I do know that DEs and
> X11 sometimes have different concepts of clipboard. I believe pass
> uses xclip, which makes the middle-click failure a little strange, but
> try Ctrl-Shift-V, context menu, etc. (In my case
> Ctrl-Shift-V/Shift-Ins/C-y [in Emacs]) will sometimes give me
> divergent results.
>
> On Sun, Jun 9, 2019 at 3:51 PM Hellmut Weber  wrote:
> >
> > Hi list,
> > I'm new to pass,
> > working on Lenovo W520 with Ubuntu-bionic server-amd with XFCE-GUI.
> >
> > I just installed 'pass' and created a first '.password-store' and
> > entered my first password in the 'pass'-storage.
> >
> > CLI-command (in xfce4-terminal)
> >
> >   leo@leoncavallo:~$ pass mail/mailat
> >
> > interactively asks for the passphrase of my gpg-privateKey,
> > then show the correct result in console.
> >
> > BUT command
> >   leo@leoncavallo:~$ pass --cli=1 mail/mailat
> > shows the text:
> >
> >   "Copied mail/mailat to clipboard. Will clear in 45 seconds."
> >
> > BUT when clicking with middle mouse the previous content of the
> > clipboard is shown.
> >
> > Am I missing somthing?
> >
> >
> > TIA
> >
> > Best regards
> >
> > Hellmut
> >
> > --
> > Dr. Hellmut Weber m...@hellmutweber.de
> > Podere Belvedere  I - 58040 Vetulonia (GR)
> > tel +39-0564-949683  mobil +39-377-4020743
> > tel dalla Germania:  089 890572912
> > fax trasformato in email (pdf):+49 89 22846855
> >
> > Degenfeldstraße 2 tel   +49-89-3081172
> > D-80803 München-Schwabingmobil +49-172-8450321
> > please: No DOCs, no PPTs.why: tinyurl.com/cbgq
> > ___
> > Password-Store mailing list
> > Password-Store@lists.zx2c4.com
> > https://lists.zx2c4.com/mailman/listinfo/password-store
> ___
> Password-Store mailing list
> Password-Store@lists.zx2c4.com
> https://lists.zx2c4.com/mailman/listinfo/password-store
>
___
Password-Store mailing list
Password-Store@lists.zx2c4.com
https://lists.zx2c4.com/mailman/listinfo/password-store

Re: pass password thru a filter on way to clipboard?

2017-11-26 Thread Andrew Beyer 
xsel has a timeout option, and xclip has a (more useful for this case,
IMHO) loops option which only allows the data to be pasted N times.

On Nov 26, 2017 14:25, "Greg Minshall"  wrote:

> hi, Till,
>
> yes, i could do the pipeline outside of pass.  however, "pass -c" does
> this nice thing of clearing the selection after N seconds, and i'd like
> to retain that (without implementing it myself).
>
> cheers, Greg
> ___
> Password-Store mailing list
> Password-Store@lists.zx2c4.com
> https://lists.zx2c4.com/mailman/listinfo/password-store
>
___
Password-Store mailing list
Password-Store@lists.zx2c4.com
https://lists.zx2c4.com/mailman/listinfo/password-store

Re: TOTP support in password-store

2016-12-30 Thread Andrew Beyer 
On Fri, Dec 30, 2016 at 3:50 PM, Reed Loden  wrote:
> If I compromise your computer, I still get both the password and the TOTP
> secret just from a simple keylogger. Not safe.

I wouldn't keep it online all the time on the same device as a
replacement for a second factor... but a second password store with
separate key & passphrase stored on a phone or other device that
doesn't also have the passwords could work, plus putting it on offline
media is a pretty reasonable compromise for backup purposes. You can
keep the private key on the same media and the only time you would
ever be using its passphrase would be if you had to do an emergency
recovery, which hopefully isn't very often. Not perfect, but likely
better than many other options (many places that do 2fa suggest to
print and save the unencrypted qr code on a sheet of paper.)

> If you don't want to use your phone, just get a hardware token of some sort
> (Yubikey or similar).

You still need a backup for last ditch recovery if (when) your
hardware device is lost/stolen/broken/replaced/etc...

I use pass like this for TOTP backup already, but not sure there's
much need for anything new in pass to support doing that, as just
piping the TOTP seed to/from pass works pretty well. I may get around
to writing up some scripts to automate my process at some point.
___
Password-Store mailing list
Password-Store@lists.zx2c4.com
https://lists.zx2c4.com/mailman/listinfo/password-store