Re: Feature request: Enable use of ZFS datasets and optionally GELI

2017-11-20 Thread Niels Kobschaetzki
But why? That‘s just files in an encrypted container. You don’t need to fork pass for that. Actually you just have to create the zfs set, put geli on top of it, strip pass of its encryption functions and that‘s it. But even on my FreeBSD-machine (and iirc GELI is only available on FBSD; not

Re: Feature request: Enable use of ZFS datasets and optionally GELI

2017-11-20 Thread Daniel Jensen
So it’s probably better to fork pass into zpass or something similar, since it’ll be exclusively for ZFS datasets and can optionally use GELI instead of GPG. Will give it some thought, but perhaps it wasn’t really a good idea for a feature request after-all. For reference, here are some links

Re: Feature request: Enable use of ZFS datasets and optionally GELI

2017-11-20 Thread Kenny Evitt
(Don't forget to 'reply all' to keep the thread on the list.) Those links don't work for me. But I was able to get at least a sense of what `geli` and `ggatel` are based on some cursory review of Google search results for those terms. Basically, FreeBSD can encrypt arbitrary filesystems. I can't

Re: Feature request: Enable use of ZFS datasets and optionally GELI

2017-11-20 Thread Niels Kobschaetzki
Isn’t GELI a GEOM-class? and those are for GEOMs, how are single files like pass uses them GEOMs? Do you want to create a zfs set for each password and then put GELI on top of that to encrypt it? Niels > On 20. Nov 2017, at 19:58, Daniel Jensen wrote: > > So it’s probably

Re: Feature request: Enable use of ZFS datasets and optionally GELI

2017-11-20 Thread Jason A. Donenfeld
If you want to put your gpg files inside an encrypted container, I think somebody wrote a plugin called "pass-tomb": https://github.com/roddhjav/pass-tomb I don't know if it's good or if it works or if you should spend time on it, but there it is. I CCd the maintainer in case he's interested in

Re: Feature request: Enable use of ZFS datasets and optionally GELI

2017-11-20 Thread Daniel Jensen
I was thinking that GELI could encrypt a ZFS dataset which contains subdirectories in which each file is stored. I’m still in the early days of putting the idea together, since it needs to be a fork, so there’s probably stuff to worked out. > On 20 Nov 2017, at 20.22, Niels Kobschaetzki

Re: Feature request: Enable use of ZFS datasets and optionally GELI

2017-11-20 Thread Kenny Evitt
I'm using ZFS on some servers, but not with Pass. What kind of features would you want to add to Pass related to ZFS or ZFS datasets? What's GELI? Depending on what it is exactly that you want, it could probably be implemented as a Pass extension. I'm pretty skeptical that these features,