Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-22 Thread Andrew David Wong
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 2017-05-22 23:49, Jean-Philippe Ouellet wrote: > On Sun, May 14, 2017 at 4:20 PM, Andrew David Wong wrote: >> On 2017-05-14 03:51, Holger Levsen wrote: >>> On Sat, May 13, 2017 at 02:55:12PM -0500, Andrew David Wong wrote:

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-22 Thread Jean-Philippe Ouellet
On Sun, May 14, 2017 at 4:20 PM, Andrew David Wong wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA512 > > On 2017-05-14 03:51, Holger Levsen wrote: >> On Sat, May 13, 2017 at 02:55:12PM -0500, Andrew David Wong wrote: you really dont protect your gpg key with a

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-16 Thread cooloutac
On Tuesday, May 16, 2017 at 11:33:41 PM UTC-4, cooloutac wrote: > On Tuesday, May 16, 2017 at 9:31:50 PM UTC-4, Andrew David Wong wrote: > > -BEGIN PGP SIGNED MESSAGE- > > Hash: SHA512 > > > > On 2017-05-16 01:24, cooloutac wrote: > > > On Sunday, May 14, 2017 at 11:09:25 PM UTC-4, Andrew

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-16 Thread cooloutac
On Tuesday, May 16, 2017 at 9:31:50 PM UTC-4, Andrew David Wong wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA512 > > On 2017-05-16 01:24, cooloutac wrote: > > On Sunday, May 14, 2017 at 11:09:25 PM UTC-4, Andrew David Wong > > wrote: On 2017-05-14 21:38, cooloutac wrote: > On

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-16 Thread Andrew David Wong
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 2017-05-16 01:24, cooloutac wrote: > On Sunday, May 14, 2017 at 11:09:25 PM UTC-4, Andrew David Wong > wrote: On 2017-05-14 21:38, cooloutac wrote: On Sunday, May 14, 2017 at 3:48:04 PM UTC-4, Andrew David Wong wrote: >>>

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-14 Thread Andrew David Wong
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 2017-05-14 21:38, cooloutac wrote: > On Sunday, May 14, 2017 at 3:48:04 PM UTC-4, Andrew David Wong > wrote: > > What do you mean? Are you suggesting that qvm-backup has "more > attack vector" than an encrypted KeePassX (or whatever)

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-14 Thread cooloutac
On Sunday, May 14, 2017 at 10:38:37 PM UTC-4, cooloutac wrote: > On Sunday, May 14, 2017 at 3:48:04 PM UTC-4, Andrew David Wong wrote: > > -BEGIN PGP SIGNED MESSAGE- > > Hash: SHA512 > > > > > > > > > What do you mean? Are you suggesting that qvm-backup has "more attack > > vector" than

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-14 Thread cooloutac
On Sunday, May 14, 2017 at 3:48:04 PM UTC-4, Andrew David Wong wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA512 > > > > > What do you mean? Are you suggesting that qvm-backup has "more attack > vector" than an encrypted KeePassX (or whatever) database? Why? > No, I think it's actually

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-14 Thread Andrew David Wong
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 2017-05-14 03:51, Holger Levsen wrote: > On Sat, May 13, 2017 at 02:55:12PM -0500, Andrew David Wong wrote: >>> you really dont protect your gpg key with a passphrase?? >> See: https://www.qubes-os.org/doc/split-gpg/ > > oh wow :( > >> Why is

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-14 Thread Andrew David Wong
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 2017-05-13 18:39, cooloutac wrote: > On Saturday, May 13, 2017 at 3:50:36 PM UTC-4, Andrew David Wong > wrote: On 2017-05-09 14:54, cooloutac wrote: On Tuesday, May 9, 2017 at 1:40:03 AM UTC-4, Andrew David Wong wrote: On 2017-05-08

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-14 Thread Holger Levsen
On Sat, May 13, 2017 at 02:55:12PM -0500, Andrew David Wong wrote: > > you really dont protect your gpg key with a passphrase?? > See: https://www.qubes-os.org/doc/split-gpg/ oh wow :( > Why is that a problem? It's only visible in dom0. If an attacker is in > dom0, it's already game over. no,

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-13 Thread cooloutac
On Saturday, May 13, 2017 at 3:50:36 PM UTC-4, Andrew David Wong wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA512 > > On 2017-05-09 14:54, cooloutac wrote: > > On Tuesday, May 9, 2017 at 1:40:03 AM UTC-4, Andrew David Wong > > wrote: On 2017-05-08 23:47, cooloutac wrote: > On

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-13 Thread Andrew David Wong
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 2017-05-11 20:53, Manuel Amador (Rudd-O) wrote: > On 05/09/2017 07:54 PM, cooloutac wrote: >> On Tuesday, May 9, 2017 at 1:40:03 AM UTC-4, Andrew David Wong >> wrote: >> >> Why? No need to encrypt the database file if the whole VM is >>

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-13 Thread Andrew David Wong
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 2017-05-12 06:53, Holger Levsen wrote: > On Sun, May 07, 2017 at 12:23:47PM -0500, Andrew David Wong wrote: >> 1. LUKS passphrase 2. Backup passphrase 3. Screen locker >> passphrase Managing these three allows me to have an arbitrary >> number of

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-13 Thread Andrew David Wong
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 2017-05-09 14:54, cooloutac wrote: > On Tuesday, May 9, 2017 at 1:40:03 AM UTC-4, Andrew David Wong > wrote: On 2017-05-08 23:47, cooloutac wrote: On Tuesday, May 9, 2017 at 12:47:11 AM UTC-4, cooloutac wrote: > On Sunday, May 7,

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-13 Thread Manuel Amador (Rudd-O)
On 05/12/2017 03:02 PM, Tom Hutchinson wrote: > Thanks for the contribution Manuel. I'll check it out. My pleasure :-) Agreed about the passwords thing! -- Rudd-O http://rudd-o.com/ -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-12 Thread cooloutac
On Friday, May 12, 2017 at 7:53:40 AM UTC-4, Holger Levsen wrote: > On Sun, May 07, 2017 at 12:23:47PM -0500, Andrew David Wong wrote: > > 1. LUKS passphrase > > 2. Backup passphrase > > 3. Screen locker passphrase > > Managing these three allows me to have an arbitrary number of > > additional

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-08 Thread Andrew David Wong
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 2017-05-08 23:47, cooloutac wrote: > On Tuesday, May 9, 2017 at 12:47:11 AM UTC-4, cooloutac wrote: >> On Sunday, May 7, 2017 at 12:33:54 PM UTC-4, nick...@kulinacs.com >> wrote: >>> On May 7, 2017 10:39:22 AM CDT, Andrew David Wong >>>

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-08 Thread cooloutac
On Tuesday, May 9, 2017 at 12:47:11 AM UTC-4, cooloutac wrote: > On Sunday, May 7, 2017 at 12:33:54 PM UTC-4, nick...@kulinacs.com wrote: > > On May 7, 2017 10:39:22 AM CDT, Andrew David Wong wrote: > > >-BEGIN PGP SIGNED MESSAGE- > > >Hash: SHA512 > > > > > >On

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-08 Thread cooloutac
On Sunday, May 7, 2017 at 12:33:54 PM UTC-4, nick...@kulinacs.com wrote: > On May 7, 2017 10:39:22 AM CDT, Andrew David Wong wrote: > >-BEGIN PGP SIGNED MESSAGE- > >Hash: SHA512 > > > >On 2017-05-07 10:32, nickl...@kulinacs.com wrote: > >> On May 7, 2017 10:23:54 AM

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-07 Thread Manuel Amador (Rudd-O)
On 05/07/2017 05:23 PM, Andrew David Wong wrote: > > I prefer the security of qvm-backup[-restore], since it allows me to > keep the vault and its contents permanently offline. The entire VM is > BZIP compressed, AES-256 encrypted, and HMAC-SHA512 authenticated. The > integrity verification,

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-07 Thread Manuel Amador (Rudd-O)
On 05/07/2017 03:23 PM, Andrew David Wong wrote: > On 2017-05-07 10:10, nickl...@kulinacs.com wrote: > > What benefit does this have over simply ysing > > qubes-split-gpg-client-wrapper, like done here: > > https://github.com/kulinacs/pass-qubes It seems like a lot of > > overhead for not a lot of

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-07 Thread Manuel Amador (Rudd-O)
On 05/07/2017 03:10 PM, nickl...@kulinacs.com wrote: > What benefit does this have over simply ysing > qubes-split-gpg-client-wrapper, like done here: > https://github.com/kulinacs/pass-qubes > It seems like a lot of overhead for not a lot of gain. 1. The actual store is stored in a separate VM.

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-07 Thread Andrew David Wong
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 2017-05-07 12:23, Andrew David Wong wrote: > On 2017-05-07 11:33, nickl...@kulinacs.com wrote: >> On May 7, 2017 10:39:22 AM CDT, Andrew David Wong >> wrote: On 2017-05-07 10:32, >> nickl...@kulinacs.com wrote: > On May 7,

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-07 Thread Andrew David Wong
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 2017-05-07 11:33, nickl...@kulinacs.com wrote: > On May 7, 2017 10:39:22 AM CDT, Andrew David Wong > wrote: On 2017-05-07 10:32, > nickl...@kulinacs.com wrote: On May 7, 2017 10:23:54 AM CDT, Andrew David Wong

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-07 Thread nicklaus
On May 7, 2017 10:39:22 AM CDT, Andrew David Wong wrote: >-BEGIN PGP SIGNED MESSAGE- >Hash: SHA512 > >On 2017-05-07 10:32, nickl...@kulinacs.com wrote: >> On May 7, 2017 10:23:54 AM CDT, Andrew David Wong >> wrote: On 2017-05-07 10:10, >>

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-07 Thread Andrew David Wong
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 2017-05-07 10:32, nickl...@kulinacs.com wrote: > On May 7, 2017 10:23:54 AM CDT, Andrew David Wong > wrote: On 2017-05-07 10:10, > nickl...@kulinacs.com wrote: What benefit does this have over simply ysing

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-07 Thread nicklaus
On May 7, 2017 10:23:54 AM CDT, Andrew David Wong wrote: >-BEGIN PGP SIGNED MESSAGE- >Hash: SHA512 > >On 2017-05-07 10:10, nickl...@kulinacs.com wrote: >> What benefit does this have over simply ysing >> qubes-split-gpg-client-wrapper, like done here: >>

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-07 Thread Andrew David Wong
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 2017-05-07 10:10, nickl...@kulinacs.com wrote: > What benefit does this have over simply ysing > qubes-split-gpg-client-wrapper, like done here: > https://github.com/kulinacs/pass-qubes It seems like a lot of > overhead for not a lot of gain. >

Re: [qubes-users] ANN: qubes-pass — an inter-VM password manager and store for Qubes OS

2017-05-07 Thread nicklaus
What benefit does this have over simply ysing qubes-split-gpg-client-wrapper, like done here: https://github.com/kulinacs/pass-qubes It seems like a lot of overhead for not a lot of gain. On May 7, 2017 9:50:26 AM CDT, "Manuel Amador (Rudd-O)" wrote: >Building on the