Pass: Difference between revisions
Line 42: | Line 42: | ||
You need a user ID to identify your key; the software constructs the user ID | You need a user ID to identify your key; the software constructs the user ID | ||
from the Real Name, Comment and E-mail Address in this form: | from the Real Name, Comment and E-mail Address in this form: | ||
" | "Karupoeg Puhh (Karupoeg) <karupoeg.puhh@itcollege.ee>" | ||
</syntaxhighlight> | </syntaxhighlight> | ||
Revision as of 09:22, 30 April 2017
Sissejuhatus
Pass is a very simple password store that keeps passwords inside gpg2 encrypted files inside a simple directory tree residing at ~/.password-store.
The pass utility provides a series of commands for manipulating the password store, allowing the user to add, remove, edit, synchronize, generate, and manipulate passwords.
Süntaks
pass [COMMAND][OPTIONS][ARGS]
Tavakasutus
1) Passi kasutamiseks on vajalik GPG võti. Võtme loomiseks kirjuta konsooli järgnev käsklus:
gpg --gen-key
2) Võtme tüüp. Vali (1) valikuvariant.
Please select what kind of key you want:
(1) RSA and RSA (default)
(2) DSA and Elgamal
(3) DSA (sign only)
(4) RSA (sign only)
3) Võtme pikkus. Vaikeväärtus on 2048.
RSA keys may be between 1024 and 4096 bits long.
What keysize do you want? (2048)
4) Võtme kehtivusaeg. Vaikeväärtus on 0.
Please specify how long the key should be valid.
0 = key does not expire
<n> = key expires in n days
<n>w = key expires in n weeks
<n>m = key expires in n months
<n>y = key expires in n years
Key is valid for? (0)
5) Võtme tuvastamiseks on vajalik kasutajatunnuse loomine, kasutades oma ees- ja perekonnanime ning e-posti addressi:
You need a user ID to identify your key; the software constructs the user ID
from the Real Name, Comment and E-mail Address in this form:
"Karupoeg Puhh (Karupoeg) <karupoeg.puhh@itcollege.ee>"
Esimesena sisestada oma nimi:
Real name:
Järgmisena sisestada oma e-posti address:
E-mail address:
Viimasena lisa lühikirjeldus, mis aitab hiljem erinevaid kasutajaid eristada:
Comment:
6) Võtme kaitsmiseks on vajalik ka parooli loomine:
You need a Passphrase to protect your secret key.
Enter passphrase:
7) Järgi kirjeldatud samme:
We need to generate a lot of random bytes. It is a good idea to perform
some other action (type on the keyboard, move the mouse, use the
disks) during the prime generation; this gives the random number
generator a better chance to gain enough entropy.
Juhul, kui eelnev protsess peaks hanguma või ebaõnnestuma, ava uus terminaliaken ja sisesta antud käsklused:
sudo apt-get install rng-tools
sudo rngd -r /dev/urandom
8) Protsess peaks nüüd jätkuma ning teatama:
public and secret key created and signed.
Käsud
If no COMMAND is specified, COMMAND defaults to either show or ls, depending on the type of specifier in ARGS. Alternatively, if PASSWORD_STORE_ENABLE_EXTENSIONS is set to "true", and the file .extensions/COMMAND.bash exists inside the password store and is executable, then it is sourced into the environment, passing any arguments and environment variables. Extensions existing in a system-wide directory, only installable by the administrator, are always enabled. Otherwise COMMAND must be one of the valid commands listed below.
Several of the commands below rely on or provide additional functionality if the password store directory is also a git repository. If the password store directory is a git repository, all password store modification commands will cause a corresponding git commit. Sub-directories may be separate nested git repositories, and pass will use the inner-most directory relative to the current password. See the EXTENDED GIT EXAMPLE section for a detailed description using init and git(1). The init command must be run before other commands in order to initialize the password store with the correct gpg key id. Passwords are encrypted using the gpg key set with init. There is a corresponding bash completion script for use with tab completing password names in bash.
Kokkuvõte
Autor
Nimi: Oliver Rahula
Rühm: C11
Kuupäev: 23.04.2017