11 votes

Introducing the Himitsu keyring & password manager for Unix

5 comments

  1. [4]
    Pistos
    Link
    The target audience will be power users, and this really evokes an interpretation of "password is not equal to hunter2". How about using a question mark instead? Anyway, the flow of the typical...

    password!=hunter2

    The target audience will be power users, and this really evokes an interpretation of "password is not equal to hunter2".

    The bang (!) indicates that the password is a “secret” value

    How about using a question mark instead?

    Anyway, the flow of the typical use case is not leaping out at me. I read the text, but didn't watch the video. I don't use a standalone password manager, so maybe my lack of knowing the pain points of those is skewing my ability to bite on the sales pitch here.

    3 votes
    1. [2]
      skybrian
      Link Parent
      It sounds like an attempt to unify command line based private key storage (like ssh-agent and ssh-add) and browser-based password storage. I don't see anything wrong with it in principle, but the...

      It sounds like an attempt to unify command line based private key storage (like ssh-agent and ssh-add) and browser-based password storage.

      I don't see anything wrong with it in principle, but the question is whether it can become a trusted solution. It hasn't been audited yet and it's written in an experimental programming language. This is security-sensitive software if anything is, so I'd want to see a trusted organization maintain it before looking into it further.

      (In general, though, it's good to see DeVault spending his time writing interesting code.)

      4 votes
      1. vord
        Link Parent
        I think it's a marked improvement to the current status quo for desktop secrets, of which I see two main implementation types: Exchanging via the clipboard or browser extension Access to every...

        I think it's a marked improvement to the current status quo for desktop secrets, of which I see two main implementation types:

        • Exchanging via the clipboard or browser extension
        • Access to every secret on the system via a wallet-like system

        Having it granular like that means NetworkManager could have access to wifi passwords while not having access to website passwords.

        2 votes
    2. Cycloneblaze
      Link Parent
      This is apparently used for an optional key, like a comment. Personally I think the exclamation point conveys importance and caution well enough while being simple. Maybe you could put it before...

      How about using a question mark instead?

      This is apparently used for an optional key, like a comment. Personally I think the exclamation point conveys importance and caution well enough while being simple. Maybe you could put it before the key name?

      4 votes
  2. Akir
    Link
    Reading about the frontends and the firefox plugin is what I really want out of a password manager; something that works for everything, and something I can sync with external services. I really...

    Reading about the frontends and the firefox plugin is what I really want out of a password manager; something that works for everything, and something I can sync with external services.

    I really love iCloud's password storage feature, but the major problem is that it's closed and doesn't work outside of Apple products.

    1 vote