I recently got interested in a terminal-friendly password manager called "go-hash". It stores usernames, urls and passwords in an encrypted database. It calls these "entries" and supports "groups" of entries. It allows you to launch a URL, while putting the password in the clipboard.
I've forked this password manager with some qubes-specific features, under the name "qpass". Features include: if you give a "group" the same name as an appvm, you can launch the URL in that appvm and with your password copied to that appvm's clipboard. Also, you could launch the URL in a dispvm, again with password copied to the dispvm's clipboard. In short, from a "vault" vm terminal, you can quickly launch an appvm, open a URL, and have the password in the appvm clipboard. Sure, qubes provides easy keyboard shortcuts for copying and pasting; but for my flow, the approach of this password manager seems a little better. Example: "appvm personal:gmail" would launch the personal vm, open a browser to gmail, and have your password in the personal clipboard. You can build this tool with golang, via `go get github.com/dncohen/qpass`. To launch appvms, you'll need to install a qubes-rpc script in the template vm, and also `xsel` or `xclip`. Details: https://github.com/dncohen/qpass, and https://github.com/dncohen/qpass/tree/master/qubes I share this here for a couple reasons. First, others may be interested in using this tool. Second, I'd appreciate this group's opinions regarding go-hash's approach and security. See the readme for details, i.e. its use of Argon2. I was drawn to it because I noticed the "group" feature could be used to know which appvm to launch, and I'm not necessarily qualified to audit other aspects for security. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/19f1a99b-7609-49e0-ad10-1d1160fe85bd%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
