| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2014-03-18 | Shred shm files. | Jason A. Donenfeld | |
| 2014-03-18 | Do not compress passwords. | Jason A. Donenfeld | |
| According to a forthcoming paper by Alfredo Pironti, OpenPGP compression can reveal entropy levels. We thus disable compression. Existing password stores can be reencrypted without compression using the "--reencrypt" flag for "init". Reported-by: Alfredo Pironti <alfredo.pironti@inria.fr> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> | |||
| 2013-09-14 | Use a glob in the pattern match instead of using two comparisons for [yY]. | Chris Down | |
| 2013-09-14 | Rephrase awkward/confusing message about enabling echo during password entry. | Chris Down | |
| 2013-09-14 | Fix directory traversal for reencryption when $PREFIX is a symlink | Brian Shore | |
| 2013-05-22 | check if a passfile exists before checking for directory | Brian Mattern | |
| 2013-04-04 | Simplify sed to not use replacement. | Jason A. Donenfeld | |
| 2013-02-23 | Tree should follow symlinks. | Marvin Killing | |
| Make show/ls/list follow links by passing -l to tree. | |||
| 2012-10-18 | Bump version. | Jason A. Donenfeld | |
| 2012-10-17 | Do not interpret backslashes when reading passwords | guns | |
| The `read` builtin accepts backslash notation for common non-printing characters by default, like `\t` and `\n`. This requires that any literal backslashes must also be escaped as `\\`. Given that `gpg -e` does not interpret input, the `read` invocations are changed to do the same. Also, the right hand side of an `==` comparison within `[[ ]]` must be quoted in order to suppress pattern metacharacter expansion. Quoting the bash manual: When the == and != operators are used, the string to the right of the operator is considered a pattern and matched according to the rules described below under Pattern Matching. | |||
| 2012-10-09 | Restore exclusivity of options in multiline/echo check. | Jason A. Donenfeld | |
| 2012-10-05 | Trim trailing slash in tree display. | Jason A. Donenfeld | |
| 2012-10-03 | Make --no-echo default, and rename to --echo. | Jason A. Donenfeld | |
| Reported-by: Paul Wise <pabs@debian.org> | |||
| 2012-09-30 | Check error code of gpg before copying to clipboard. | Jason A. Donenfeld | |
| 2012-09-30 | Explicitly use gpg2 rather than relying on symlink. | Jason A. Donenfeld | |
| 2012-09-24 | Style fixes. | Jason A. Donenfeld | |
| 2012-09-23 | Fix style. | Jason A. Donenfeld | |
| 2012-09-23 | Add FreeBSD platform file | Jonathan Chu | |
| Redefine GNUPG and GETOPT for port paths Redefine tmpdir() for a different ramdisk path | |||
| 2012-09-22 | Normalize negation and bashism. | Jason A. Donenfeld | |
| 2012-09-22 | Fix directory removal. | Jason A. Donenfeld | |
| 2012-09-22 | Add man page comment to usage message. | Jason A. Donenfeld | |
| 2012-09-22 | Bump version to 1.4. | Jason A. Donenfeld | |
| 2012-09-22 | Normalize copyright headers. | Jason A. Donenfeld | |
| 2012-09-22 | Allow git repo to be elsewhere via env var. | Jason A. Donenfeld | |
| 2012-09-21 | Add support for PASSWORD_STORE_KEY env var. | Jason A. Donenfeld | |
| 2012-09-21 | Add option to init to reencrypt all passwords. | Jason A. Donenfeld | |
| Reported-by: Simon KP <si@eskp.net> | |||
| 2012-09-20 | Quit if pwgen returns nothing. | Jason A. Donenfeld | |
| Reported-by: Brian Mattern <rephorm@rephorm.com> | |||
| 2012-09-20 | Prompt before overwriting password in generate, unless --force is provided. | Jason A. Donenfeld | |
| 2012-09-19 | Make qdbus ugliness more segmented. | Jason A. Donenfeld | |
| 2012-09-19 | Since we're using batch mode, we can read directly. | Jason A. Donenfeld | |
| 2012-09-19 | Clean up git handling. | Jason A. Donenfeld | |
| Get rid of push/pull shortcuts, as they weren't widely used. Add contents to repo on git init. Centralize git add logic, and make it less error prone. | |||
| 2012-09-19 | Fix git regression. | Jason A. Donenfeld | |
| 2012-09-18 | Quote the template. | Jason A. Donenfeld | |
| 2012-09-18 | Quote the program name. | Jason A. Donenfeld | |
| 2012-09-17 | Abstract potentially platform specific commands into their own commands. | Jason A. Donenfeld | |
| 2012-09-16 | Support recursive and forced removal. | Jason A. Donenfeld | |
| Laurent asked for this. Reported-by: Laurent Ghigonis <laurent@p1sec.com> | |||
| 2012-09-16 | Small stylistic things. | Jason A. Donenfeld | |
| Reported-by: Laurent Ghigonis <laurent@p1sec.com> | |||
| 2012-09-14 | Bump to 1.3.1. | Jason A. Donenfeld | |
| 2012-09-13 | Typo. | Jason A. Donenfeld | |
| 2012-09-13 | Bump version. | Jason A. Donenfeld | |
| 2012-09-13 | Allow avoiding the prompt for overwriting, with --force flag. | Jason A. Donenfeld | |
| 2012-09-13 | Split out common gpg options into variable. | Jason A. Donenfeld | |
| Reported-by: Brian Mattern <rephorm@rephorm.com> | |||
| 2012-09-13 | use gpg --batch for quieter output | Brian Mattern | |
| Right now, every time I call pass to decrypt a key, I get output like: You need a passphrase to unlock the secret key for user: "User Name <user@domain.com>" 2048-bit ELG-E key, ID XXXXXXNX, created 2012-04-20 (main key ID NNXXNNNX) password This patch cleans it up so that only the password is output. I use pinentry-gtk-2 to enter the gpg passphrase, so this information is redundant to me. I haven't tried other pinentry versions to see if they repeat the information as well. | |||
| 2012-09-13 | prevent <ctrl-c> on password entry from wiping out file | Brian Mattern | |
| Currently, if you hit ctrl-c at the standard 'Enter password' prompt, since it is piped directly to gpg, the entry gets cleared. Trying to read from that entry results in: gpg: [don't know]: 1st length byte missing This patch fixes this. Tweaked by Jason A. Donenfeld <Jason@zx2c4.com> to add GNU readline features by using -e in read. | |||
| 2012-09-13 | Confirm before overwriting an entry | Brian Mattern | |
| This asks before inserting a password when one already exists at that location (instead of just overwriting it). | |||
| 2012-09-13 | Use bash's read command better. | Jason A. Donenfeld | |
| 2012-09-13 | Add --version switch, per request. | Jason A. Donenfeld | |
| 2012-09-13 | Be more careful about cleaning up. | Jason A. Donenfeld | |
| 2012-09-12 | Use getopt to regularize options | Brian Mattern | |
| I like being able to specify command line options (like -c) at the end of the line (which is usually when I think of the fact that I need them). The attached patch uses getopt(1) to regularize the option list so that lazy people like me can specify the options in any order. | |||
| 2012-09-12 | Don't quote ${EDITOR:-vi} | rupa | |
| Attached is a trivial patch that removes the quotes from the line that invokes $EDITOR. It's perfectly cromulent to set $EDITOR to something with spaces in it, so when we evaluate this one we want it evaluated bare. For example security nerds might want EDITOR='vim -n' if they are scared of swap files, and that breaks if we quote there. | |||