Hacker News new | ask | show | jobs
by bitexploder 3256 days ago
What do you mean by powerful? I was a very happy user of 1Password, but their lack of Linux support caused me to leave.

I migrated to https://www.passwordstore.org and am perfectly happy. I always used the keyboard driven password search to retrieve passwords in 1Password. On Linux I just use dmenu. It is as good as any other password manager and I don't have to worry about problems like the ones in this article.

I still like 1Password, but I won't be going back.

I still recommend 1Password if you need cloud sync. KeePassX is a good local storage GUI alternative. Or just use Keychain on a Mac.
1 comments
andystanton 3256 days ago
I meant powerful in terms of the features it offers - for example strong password generation, keyboard shortcut driven UI, browser extensions, fingerprint scanner integration, different storage engines, categories for secure non-password stuff like credit cards, OTP support, shared vaults (over third party storage providers) and even stuff like the icons for each service are useful.

1Password has so many useful features, but the push towards the subscription model feels like Agilebits might phase out all other storage engines eventually, regardless of what the official line is right now. At least maybe they'll branch into Linux support if the subscription model brings in more revenue.

link
Freak_NL 3256 days ago
> Strong password generation

    pass generate accounts/news.ycombinator.com 32
> keyboard shortcut driven UI

`pass` is a CLI application. It has tab-autocompletion and everything. It doesn't get more efficient than that (tip: use `pass find` to search for entries).

> different storage engines

It's just OpenPGP encrypted plain text on disk, not sure what more you could want, but there is support for Tomb (https://www.dyne.org/software/tomb/) as well. Anything you expose to the filesystem works of course, including services like SFTP.

> shared vaults

Syncthing or git, and the use of multiple OpenPGP recipients. (See `.gpg-id` in the `pass` man-file.)

> categories for secure non-password stuff like credit cards,

It's plain multi-line text. The only convention is that the first line is intended for the password or secret data that clients would copy to the clipboard. You can store whatever text you want.

> OTP support

https://github.com/tadfisher/pass-otp#readme

link
bitexploder 3256 days ago
And because it is open and just files it took me 30 minutes to hack up a Python+dmenu script. Combined with the speed of SSD an entire walk of the tree is <100ms.

The shell interface is good. Especially `pass search`. Simple but effective.

It has gotten quite popular as well (amongst technical folks anyway). It is basically just a giant shell script. You can almost sense the authors frustrating. FINE I will just write a password manager myself. This started a simple 30 line shell script. Then you get into hacking on it. The you figure FINE I will polish it and release it. :)

link
bitexploder 3256 days ago
Dmenu with pass is bliss. Emacs keybindings to navigate results. Super simple.

It's just a file system with gpg encrypted files at the end of the day. I keep it organized. Store credit cards, etc.

Browser and fingerprint.... No.

link