Hacker News new | ask | show | jobs
by jamesponddotco 2566 days ago
Hm, seems like it stores SSH key passwords in plain text?

https://github.com/Crystalnix/termius-cli/issues/132

Any comment on that?
1 comments
rkudiyarov 2566 days ago
Yes, that is user's home directory, e.g., SSH keys in ~/.ssh are also plain text.
link
jamesponddotco 2566 days ago
Not their passwords, tho. I am not trying to be difficult here, just trying to understand the reasoning behind leaving the passwords stored in plain text.
link
rkudiyarov 2566 days ago
We found no way to store password somehow else as Keychains are platform specific, but we plan to add Keychain support in the future.
link
Terretta 2565 days ago
If you used ‘platform specific’ built-in secrets sync you’d be done... but then how would you justify charging for the built in sync? So I see your conundrum.
link
__david__ 2565 days ago
> …SSH keys in ~/.ssh are also plain text.

What? Mine aren't, nor have they ever been…

If you are storing ssh private keys on disk without a password you are doing something wrong.

link
icebraining 2565 days ago
If someone can read the files in .ssh, chances are they can also add an alias to the ssh command that steals your passphrase. As for the "stolen laptop" scenario, whole disk encryption is preferable.
link