Adam Spiers <[email protected]> writes: > I got the impression that the point of pass was to provide an > additional line of defence above what the filesystem already provides. > If the filesystem can be trusted to keep things secure then you could > simply store all your credentials in it in plaintext, and there would > be no need for pass. Maybe I misunderstood something?
When using an encrypted container, you may very well store your passwords in plain text and achieve the same level of defense for your (non-meta) data as offered by pass and its GnuPG backend, at least if you opt to re-lock the container after use. In this case, any sort of metadata encryption built into pass would not offer any substantial advantages. Best regards, SR _______________________________________________ Password-Store mailing list [email protected] https://lists.zx2c4.com/mailman/listinfo/password-store
