Revelation password manager issue

Daniel P. Berrange berrange at
Mon Jun 18 08:46:17 UTC 2012

On Sat, Jun 16, 2012 at 12:31:46PM -0500, Jon Ciesla wrote:
> On Fri, Jun 15, 2012 at 4:18 PM, Chris Murphy <lists at> wrote:
> >
> > On Jun 15, 2012, at 12:51 PM, Jon Ciesla wrote:
> >>> They are using PBKDF2 with SHA-256, default 500 rounds up to 100,000 rounds. The database is locally encrypted. Offline access is possible. The free version supports Google Authenticator for TFA, other forms of TFA are available in the not free (but cheap, like $12 a year) version. They also have a mobile version for every mobile platform I've heard of and then some.
> >>
> >> It's exactly for those features that I use keepassx. :)
> >
> > Umm, so you mean you explicitly want a solution that does not offer TFA, PBKDF2, offline access, or synchronization across computers?
> Sorry, I was being unintentionally vague.  No, TFA and BBKDF2 are
> great.  I want something with *only* offline access, and no
> cross-machine sync.  Both lastpass and keepassx encrypt locally, but I
> can verify that by looking at keepassx's source.  I just can't quite
> make myself put my passwords in anything stored online, and if someone
> can't trust me with their code, I certainly can't trust them with my
> passwords. :)
> But that's me. ;)

And me :-)  Synchronization across computers with KeePassX works
just fine when you store the passwd DB on a small USB memory stick
attached to your physical keyring ;-P It also means you can have 2
layers of encryption by adding in LUKS or cryptfs

|:      -o- :|
|:              -o-    :|
|:       -o- :|
|:       -o- :|

More information about the devel mailing list