Project

dpass

0.0
No commit activity in last 3 years
No release in over 3 years
dpassspikels/dpassHomepageDocumentationSource CodeBug TrackerWiki
Derive application specific passwords from secret master password using PBKDF2 in OpenSSL
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
 Popularity
Downloads
2,524
Stars
0
Forks
0
Watchers
2
 Releases
Current version
0.0.1.alpha07
Total releases
1
First release
2012-09-12
Latest release
2012-09-12
 Development
Primary Language
Ruby
Average date of last 50 commits
2012-08-30
Reverse Dependencies
0

 Dependencies

Development

rake
>= 0
rspec
>= 0

Runtime

clipboard
>= 0
trollop
>= 0
 Project Readme

WARNING!!! DO NOT USE! NOT COMPLETE OR TESTED!

Please check back soon for the first usable version (i.e. v0.0.1).

Dpass Build Status

Application specific passwords derived from your secret master password using PBKDF2 from OpenSSL already installed on your computer.

Installation

Dpass currently requires Ruby 1.9.x but should soon work on Ruby 1.8.x.

Install the gem:

$ gem install dpass --pre

You need a personal dpass salt file in your home directory (~/.dpass). The SAME salt file must be installed in the home directory on each machine you want to run dpass or else you will get different derived passwords. So if you already have one you use, copy any perviously created salt file to your home directory.

If this is the first time you are using dpass, go ahead and create a new personal salt file:

$ dpass -new_salt

Usage

$ dpass <application_1>[...<application_N>]

For example to generate a password for Gmail and Yahoo

$ dpass gmail yahoo

You will be asked for your master password then a password will be generated for each application specified.

Background

The theft of passwords from internet sites seems to be an increasingly common occurance. Combined with the common practice of using either the same or related passwords across this is a serious security risk.

Clearly you should have a independent and strong password for every site you visit. I recently took Dan Boneh's excellent Cryptography class on Coursera and learned that this well known problem, known as "password based key derivation", has standard solutions.

Inspired by a broken idea on Hacker News and ignoring warnings to never even think about building your own crypto I made dpass.

Other Password Managers

LastPass, KeePass, PwdHash

References

Contributing

  1. Fork it
  2. Create your feature branch (git checkout -b my-new-feature)
  3. Commit your changes (git commit -am 'Added some feature')
  4. Push to the branch (git push origin my-new-feature)
  5. Create new Pull Request