This is a predicate for a distributed password management system. At the end of this exercise you have a secure password manager for one device, but with a small step or two the full solution can be implemented.
- Download and install GPG; At least install kleopatra, as this will give you a nice GUI for generating you keys.
- Generate a new keypair. Open kleopatra, click on file -> new key pair. Select “Create a personal OpenPGP pair.” Fill in your name (first and last) and email. Click on advanced. Select 4096 bits. Ensure you publish your key so you can do other fun things, like send encrypted email.
- Download and install qtpass.
- Configure qtpass. Click on users. Select the user you generated a key for earlier. Close the dialog. Exit qtpass. Relaunch it. Select config. I recommend the following:
- On-demand copy to clipboard. Hide after 10 seconds.
- Check hide password. Check autoclear, after 10 seconds
- Password length. Try 20 characters. Some sites won’t use all 20, so youll need to shorten it for them, but most sites do let you go long.
- Use tray icon.
- Start minimized
- Click on programs, set the path to gpg: You can browse to it, but it should be “C:/program files (x86)/GnuPG/bin/gpg.exe”.
At this point, it would be good to create a few folders. The nice thing to note is you don’t have to use qtpass for this – it can be a bit squirrley, Just open a command line prompt and cd into “password-store” – you can do “mkdir
Try adding a new password under a folder – it should let you enter the login name, click on “generate password”, and when you save it should show the password under your folder.
Next step is to add git support, and create a secure git repo on a website. Then you’ll basically have a custom, secure, distributed password store!