For a long time I’ve been using KeePass for my everyday password needs. With a big amount of applications on almost all modern platforms the usage of KeePass was very confortable. On my Linux machines, I’ve almost exclusively been using KeePassXC, mainly because it offers browser integration and a modern design. Although the KeePassXC worked perfectly fine, the browser integration was sometimes a bit tricky and going into the application itself, just to copy a password is a huge pain. Pass completely eliminates this problem and, despite it’s age, provides a refreshing user experience.
Why should I even bother with password managers?
Good question. For the longest time I’ve been using one password for every account myself. While the “paranoid” crowd strongly disencouraged anyone from doing this it didn’t really bother me. Although I haven’t been using FaceBook for more than eight years now, my account got hacked back in 2015 (at this point I was 100%ly sure that I’ve deleted my account, but FaceBook seems to have reactivated it). I got an email about a Russian IP utilizing my account someday and when I logged in, my pfp was some asian lady. My name was also completely changed of course. After this incident and another one where the MPGH password db was hacked, I decided to start using a password manager. I started with BitWarden (still a solid choice in my opinion) and changed to KeePass because I prefered having my password database stored locally.
The benefit of this is having different and very strong passwords on your online accounts, which realistically can’t be cracked with any modern technology. The best thing about having a different password everywhere is that in case of a database leak, you only will have to change the password on the affected website, your PayPal is safe :)
Copying passwords and autofill can be a pain in the ass sometimes, but Pass due to it’s amazing wrapper (passmenu), which utilizes dmenu completely eliminates this problem. I just hit my passmenu keybind and search for the password. It’s much better than dealing with annoying browser extensions. It’s also a good way for getting passwords on the CLI. Instead of opening up KeePassXC and searching for the right password, I just hit MOD + G and type in which password I want to get and it gets copied to my clipboard. Pretty slick.
This is seriously amazing. While other Password Managers also offer similar functionalities via Dropbox or NextCloud, hosting your password database on Git is where it’s at, in my opinion at least. Dropbox synching of KeePass has been very wonky for me, also the KeePass database is a bit tricky to share, mainly because it’s one big file, instead of a data hierarchy like in Pass. I have set up remotes on my two linux computers and my iPhone and I’m very pleased with how effentively this works.
This aspect is also covered pretty well here, despite Pass not being on the top of the popularity ladder of password managers. The Pass CLI tool is very nice to use in a tiling window manager oriented workstation, but there’s also a GUI option with qtPass, which is available in the repository of most popular distros. There’s even a windows option (WinPass), which makes Pass absolutely qualified for cross platform usage. As I mentioned, there is also a pretty good iPhone app called “Pass for iOS” which I’m using at the moment, it provides everything the desktop Pass applications have in store. The only thing missing is a Touch ID possibility of unlocking the database, but maybe it’s better this way, especially since Touch ID is known to be fairly insecure (it also makes it very easy for the police or another authority to force you to unlock your phone or your password database).
Use it. It’s glorious!