Symmetrical encryption or ...

Dave Pawson dave.pawson at gmail.com
Sat Nov 22 07:28:20 CET 2014 

Thanks Doug

On 22 November 2014 02:37, Doug Barton <dougb at dougbarton.email> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA256
>

> Either symmetric or PK encryption would suit your needs, but as
> someone pointed out already, a better solution is to use a password safe.
>
> KeePass is an excellent solution, and I use the same password db
> between Windows, Linux, and OS X (not in that order). :)  You want to
> use the lowest common denominator format between those systems, which
> at this point is the 1.28 version for Windows, and the keepassx
> version that comes with most Linux distributions (I use Ubuntu
> primarily).

Noted.

typically Secure access requires n items, login/pwd/mothers maiden
name/ inside leg measurement etc... Can keepassx store a list of
key:value pairs?
  I know some systems are restrictive in this area. I'm currently
running Python code which dumps the dictionary content for use, direct
from the decryption.


So where do you store the data? Online for access from 3 machines? Dropbox?
   Seems an unnecessary exposure. I'll have a look.

>
>  And obviously you don't want to use solutions like
> LastPass, where your stuff is stored in their cloud. The question of
> "What if they get hacked?" is no longer academic, since it happened
> recently.

Yes...

>
> For synchronization between systems I use SpiderOak, which also has
> clients for all 3 platforms. KeePass already encrypts the db file, and
> SpiderOak, unlike most "cloud storage" platforms, encrypts the files
> it backs up locally (on your system) with a special key that the
> company does not know.

Another exposure? At least with a symmetrical encryption the files are
only local... (Am I being too cautious?)



> http://keepass.info/index.html
>
> https://www.schneier.com/blog/archives/2014/09/security_of_pas.html
>
> If you use this link to sign up for SpiderOak, I get free space. :)
> https://spideroak.com/signup/referral/25c4971714a13f13c24fa98a43317dc2/

Thanks Doug. More options.


>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v2
>
> iQEcBAEBCAAGBQJUb/bPAAoJEFzGhvEaGryEq9EH/0pwRxi7PpJMlJs9yGOvdcBO
> +oqL6uJ99U72kdmUeznLzSewN5pHJoKB26gHAqs2WvNnoNGDOfRKz89ijKxCOWbE
> 8uJfz+AEqDJLe6CdLXSVTTa8SdLDydYUqrQZuV3aPxVPCCA91I4vi0HVB3MAlqLV
> ndOEaX6wP6/GCqVDkHUDQ9V37jmFHa7jl2RKFXj5BRL31ztQuqVQ4VlCiVbZFvje
> aipBL8p1l9EBdEUdQIM7tnykeP9EY+0F5zQmSqAuxxk+CFKQZBJ2FqZN1bnvi5OC
> QQFaUy4sGQKdI/uoOQOVM5YHXzQxJ6tZY1zFUudQwcs/Sdi2EQkRZQVOpMHeeqQ=
> =dI3t
> -----END PGP SIGNATURE-----
>
>
> _______________________________________________
> Gnupg-users mailing list
> Gnupg-users at gnupg.org
> http://lists.gnupg.org/mailman/listinfo/gnupg-users



-- 
Dave Pawson
XSLT XSL-FO FAQ.
Docbook FAQ.
http://www.dpawson.co.uk

More information about the Gnupg-users mailing list