Trousseau: an encrypted and networked key-value database (github.com)
Trousseau is a gpg encrypted key-value store designed to be a simple, safe and relient place for your data. It stores data in a single multi-recipients encrypted file and can supports both local and remote storage sources (S3 and ssh so far) import/export.
Create a trousseau store, specify which gpg recipients are allowed to open and modify it, and adding some key-value pairs to, export it to s3 for example, and re-import it on another device. As simple as that.
Whether you're a devops, a paranoid guy living in a bunker, or the random user who seek a simple way to store it's critical data in safe maneer. Trousseau can do something for you.
19 comments
[ 3.1 ms ] story [ 45.7 ms ] threadGreat job oleiade! This is definitely on my radar.
But I think it'd be better if DEB repository is signed...
As soon as the subkeys are available on bintray, packages from the repo will be signed though :)
nope.
Two alternatives possible, whether to add a '--password' global option allowing you to provide your password at runtime, or to implement https://github.com/tmc/keyring.
What do you think? Any other alternatives to suggest?
proposing the env variable passphrase means a lot of people will put the password <in clear, plain text> in their .zshrc, .bashrc, you name it
Relient? I think he meant "reliant" but even that doesn't sound right. Reliant means "trustful", suggesting that the system trusts you. Maybe he meant "trustworthy". (Or just simply "reliable".)
("relient" is a French word meaning to connect, link, or join, and the author seems to be French. But that observation doesn't seem to help.)
I was thinking to implement some basic search features to trousseau using it.
Would it fit with your needs?