Hacker News new | ask | show | jobs
by omtose 3506 days ago
This is all a lot of effort, if I went down that road I might as well skip "pass" and handle the passwords myself. What I like about pass is that there isn't much setup.

Full disk encryption also doesn't prevent a running application from seeing the directory structure. But I guess this is not a very realistic attack vector.
1 comments
adilparvez 3506 days ago
Yes, under that threat model you would lose with all of these password managers.
link
omtose 3506 days ago
How so? If the entire directory structure is also encrypted then no program can easily know which sites or services I have passwords for.
link
adilparvez 3506 days ago
I was meaning if your machine was compromised.
link