Other encrypted container for passwords

W

waasnsteffl

hi.
i would like to make 2 encrypted usb sticks for the lot of passwords of our family, which should run under freebsd, linux and at least ( but hopefully becoming obsolete) under windows 10.
are there any suggestions for either specific usb sticks or software solutions
thanks in advance, anton
 
If you want to protect your passwords you could use OpenSSL?

FreshPorts -- security/openssl: TLSv1.3 capable SSL and crypto library

The OpenSSL Project is a collaborative effort to develop a robust, commercial-grade, full-featured, and Open Source toolkit implementing the Secure Sockets Layer (SSL v3) and Transport Layer Security (TLS v1, v1.1, v1.2, v1.3) protocols with full-strength cryptography world-wide. The project is...
www.freshports.org www.freshports.org

I usually format my USB drives with UFS.

docs.freebsd.org

Chapter 20. Storage

This chapter covers the use of disks and storage media in FreeBSD. This includes SCSI and IDE disks, CD and DVD media, memory-backed disks, and USB storage devices.
docs.freebsd.org docs.freebsd.org

But you could format them for dos and store encrypted files on them.

newfs_msdos

man.freebsd.org man.freebsd.org
 
Thanks, for the suggestions, keepass seems to run on many systems and i will try it. seen "nitrokey passkey" often in the wellknown german CT computer technik jounal and suggested by them. would that make more sense and be easier to use in the family?
thanks, Anton
 
Vaultwarden works nicely for me. It's like Bitwarden but self-hosted. I've been running it a jail for years. Everyone can get their own vault, and you can also set up shared vaults for common credentials that the whole family gets to use. The Bitwarden integrations for browsers and mobile apps work seamlessly with it.
 
sysutils/password-store uses standard tools (git, GPG) and hence runs pretty much anywhere. It's basically a collection of encrypted text files in the background, so it can hold any textual data you want, not like many password managers that are limited to credentials. You can also always manually encrypt the files, so you are not bound to a single piece of software and have to hope it will never break, be abandoned or sold to some evil empire. Due to it also using git in the background, it is also trivial to replicate and keep in sync over multiple systems.
It is originally cli-based but there are also various gui-tools available for any platform.

If you want a more GUI-y solution which makes it easy to share credentials with others and access from anywhere, you might have a look at https://passbolt.com. It's a web-based solution but also uses standardized tools (i.e. gpg) in the background for encryption. So apart from everything being in a database, you can still retreive your data even if the application should break.
We've been using the pro version @work for years now and are very pleased with it.
There are generic instructions for installation from source (https://www.passbolt.com/docs/hosting/install/ce/from-source/), but I also started preparing a port a while ago that I can share (or finally polish and submit it)
 
Veracrypt - not password specific but it's nice to have an encrypted volume you can move between systems.
 
You must log in or register to reply here.
Back
Top