[conspire] storing passwords

[Rick Moen]

Quoting Ehud Kaldor (ehud.kaldor at gmail.com):

> what do you guys think of password managers such as KeePass? have one
> master password for it, and have it generate passwords for you...

What I _personally_ think is that I want my password manager to be in a
separate, airgapped device -- for obvious reasons.  This is why I keep
using extremely obsolete PalmOS PDAs and the excellent open-source Keyring 
(http://gnukeyring.sourceforge.net/) application.  It is an ideal match 
for my security model (except for the detail about PalmOS devices being
now antique and the PDA being no longer an accepted product category).

At the cost of occasionally, slightly compromising my security model, I
can have a second route into my Keyring database in the form of J-Pilot
for Linux, because it has a 'conduit' (glue piece) that gives it access
to the Keyring database in your PalmOS file backup (if you type in your
Keyring master password, in J-Pilot).

Screenshot of one of J-Pilot's screens:
http://jpilot.org/screenshots/jpilot-datebook.png
(it's a GTK front-end for the pilot-link utilities.)

Modern devices for managing passwords offline are occasionally discussed
on the SVLUG mailing list.  Some seem really promising, and, unlike
PalmOS PDAs, fit in your pocket.