Python-based password tracker (or dictionary)

Where we work we need to remember about 10 lon开发者_开发百科g passwords which need to change every so often. I would like to create a utility which can potentially save these passwords in an encrypted file so that we can keep track of them.

I can think of some sort of dictionary passwd = {'host1':'pass1', 'host2':'pass2'}, etc, but I don't know what to do about encryption (absolutely zero experience in the topic).

So, my question is really two questions:

1. Is there a Linux-based utility which lets you do that?
2. If you were to program it in Python, how would you go about it?

A perk of approach two, would be for the software to update the ssh public keys after the password has been changed (you know the pain of updating ~15 tokens once you change your password).

As it can be expected, I have zero control over the actual network configuration and the management of scp keys. I can only hope to provide a simple utility to me an my very few coworkers so that, if we need to, we can retrieve a password on demand.

Cheers.

Answers to your questions:

1. Yes. Take a look at KeePass.

2. I wouldn't program a utility like this in Python, because there are available open source tools already. Furthermore, I would have concerns about protecting the unencrypted passwords as they were processed by a Python program.

Hope that helps.

You might want to checkout ecryptfs. It should be available for any Linux OS. On Ubuntu, setting it up is as easy as

sudo apt-get install ecryptfs-utils
ecryptfs-setup-private

This creates a directory for encrypted files, typically called ~/.Private. To use it:

mount -t ecryptfs ~/.Private ~/Private

This mounts the encrypted files from ~/.Private at the mount point ~/Private. You can read/write the plain text files in ~/Private.

umount ~/Private

updates the encrypted files in ~/.Private and removes ~/Private.

See these links

• home page
  
• linux journal
  
• tutorial
• another tutorial

On first i think you can change passwords on md5 of this passwords.. it will give more safety.

You could use TrueCrypt or AxCrypt -- both are Open Source solutions. I'll echo Mox's concerns about the unencrypted PWs.

Of course you could also follow Bruce Schneier's advice about password protection...