Linux - EnterpriseThis forum is for all items relating to using Linux in the Enterprise.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Hello
Im looking for a program to share password between my colleges. Like a webapplication that each user can log into and access all the different username/password radius shared secrets, snmp communities and so on.
Any recomendations?
Use pgp together with any social network site that will allow that kind of activity. Or just send each other emails. But beware that if you're sharing anything illegal, they're gonna get you anyway! .
Well thats really not what i was looking for. Say i have 20 servers with unique root password on each plus user for mysql and stuff like that. Thats really not a option to browse around a emailbox. Plus that i really dont want the password in cleartext in the mailbox.
Well thats really not what i was looking for. Say i have 20 servers with unique root password on each plus user for mysql and stuff like that. Thats really not a option to browse around a emailbox. Plus that i really dont want the password in cleartext in the mailbox.
Hence the reason I suggested using pgp. (or Gpg, the Gnu equivalent) You could try Dropbox.
Hello
Im looking for a program to share password between my colleges. Like a webapplication that each user can log into and access all the different username/password radius shared secrets, snmp communities and so on.
Any recomendations?
I don't know of any great free-beer solutions to this problem. For very sensitive data, an encryption device (i.e. hardware) is the right answer. For the types of credentials you're describing, perhaps (?) a simple approach: keep an AES-encrypted file on an sftp server that your colleagues have access to. (This would require that you have a safe way to share the encryption key, of course.)
Or, if you like the Dropbox idea, you might also want to check out SpiderOak.
Quote:
Originally Posted by qlue
But beware that if you're sharing anything illegal, they're gonna get you anyway!
I didn't see anything in OP's question that would indicate (or even hint at) illegal activity. And good encryption is designed precisely to prevent them from "[getting] you".
With respect, I'm wary of software solutions like this. It is going to be accessed by various users over the 'net, and it runs a general-purpose operating system. Seems like an easy thing to get wrong to me.
KeePassX is a FOSS port of the FOSS Windows KeePass application to store passwords etc. in an encrypted database. If the passwords don't change too often and in too many geo-places you could simply distribute the encrypted master database.
That maybe would be something. I have tried this aswell http://sourceforge.net/projects/webkeepass/ But i could not really get it to work as i wanted. The ldap connection was a bit buggy (i could write anything and i could still get logged it)
The ldap connection was a bit buggy (i could write anything and i could still get logged it)
Ouch! I have been using KeePass and later KeePassX for ~4 years and not had cause for complaint. This usage did not include mounting a serious cryptographic attack on it (I wouldn't know how) but I take comfort in it having a large user base and not having heard of any incidents. The master password entry screen is direct so susceptible to key-loggers.
Keepass have good reputation. But i would really like to have some kind of webgui or something like that. First it would be cool to have a user database, well i guess i could just use a local database insted of a ldap, then i would be able to for example controll what user got what password.
Also if we are multiple people sharing the same "database" for example in keepassx it would be a bit messy if many people start to edit it at the same time (i guess).
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.