Re: [pass] Key rotation

2015-12-13 Thread commentsabout
Hello, On 2015-12-06 23:34, Lucas Hoffmann wrote: The man page says you should use "pass init [-p subfolder] newid". Or do you need some info that is not in the man page? On 2015-12-07 12:22, Martijn van Dijk wrote: I just did this, you can run pass init and it will re-encrypt all the

Re: [pass] Key rotation

2015-12-13 Thread Lie Ryan
If you suspect your master password has been compromised, you should change all your passwords. At that point, you essentially are creating a new password store from scratch. On December 14, 2015 11:22:41 AM GMT+11:00, commentsab...@riseup.net wrote: >Hello, > >On 2015-12-06 23:34, Lucas

Re: [pass] Key rotation

2015-12-07 Thread Mike Charlton
On 7 December 2015 at 08:37, Emil Lundberg wrote: > I'm not saying rotating keys is a bad idea, just that this is something > you need to keep in mind if you do. > I'm not sure why it would be considered a good idea. Unless I'm missing something the reason for

Re: [pass] Key rotation

2015-12-06 Thread Emil Lundberg
I'd like to provide a friendly reminder that if you do that, make sure to also (securely) delete all copies of your password store encrypted with the old key(s) as they can still be decrypted with the old key(s). This includes old commits if you use git to version your repository, as well as any

Re: [pass] Key rotation

2015-12-06 Thread Lucas Hoffmann
The man page says you should use "pass init [-p subfolder] newid". Or do you need some info that is not in the man page? Quoting commentsab...@riseup.net (2015-12-07 00:28:01) > Hello, > > Is there an easy way to rotate key (change GPG key at some point) with > pass ? > > > Best, > > CA >