Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Note that pass by design leaks both the websites you have set up and the metadata of the history of each record. This might suit your threat model, or it might not.


If I'm looking in your ~/.password-store directory and see entries named Finanace/, Travel/, Streaming/, Work/... you have bigger problems.


Could I ask why?


That means I have access to your local machine if I can view your ~/.password-store directory. I might not be able to view or decrypt the contents of every entry, but I still have access to your machine.


Ah, right, I didn't consider that. Thanks.


Wouldn't the attacker need to breach your git server first before that was leaked?




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: