I wish there were a password manager that uses security keys to decrypt key material, without going through gpg. Obviously only as a second round of encryption, after first encryption the whole vault (protecting both metadata and key material).
-
Show this thread
-
Going through gpg is way too complicated for mere mortals, and has restrictions like not really supporting multiple hardware keys. Imo going through a hardware security key is what everyone with access to somewhat sensitive data should do. But it's unrealistic atm.
1 reply 0 retweets 2 likesShow this thread -
Replying to @AndresFreundTec
Have you tried out envchain with some other key-management system?
1 reply 0 retweets 0 likes -
Replying to @davidfetter
I don't see how it's relevant? Am I missing something?
1 reply 0 retweets 0 likes -
Replying to @AndresFreundTec
It's a way to populate PGPASSWORD somewhat securely.
1 reply 0 retweets 0 likes
But what does that have to do with my tweets? I mean one big part of what I was talking about is that the usability of all the solutions I know about sucks. And the other big part was additional per-secret encryption, with decryption happening on the security key (eg a yubikey)
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.