16
votes

Is there a good enough service I could run on my own home (Linux) server that I could use for storing/accessing/synchronizing passwords so they could be available for me from multiple computers/places?

I'm thinking of something like Xmarks BYOS or Firefox weave but that would not be only for browser passwords, but passwords in general? A place where I could put my SSH, FTP, OS, etc. passwords? Maybe something like KeePassX but synchronizable?

And that in the same time, all these passwords are on my own server instead of being somewhere in the cloud? Standalone service, webapp service, doesn't matter...

Suggestions?

2
  • @pootzko, not at all - this is not (yet ;) ) a dictatorship, there are 2 other mods, Meta site and chat room for discussion... I removed the tags based on discussions that were had previously, and according to my understanding of the tags and reading of the question. If you ever disagree with anything any of the mods do here - you definitely have ample recourse. If you think our ideas re tagging is wrong, join the discussion! The only thing I'm determined, is to keep the site orderly and useful for everyone. Then again, I may make mistakes, and please let me/us know when we do.
    – AviD
    Commented Jan 16, 2011 at 11:59
  • OK so I use Sticky Password (www.stickypassword.com) - they are offline for desktop, which is my preferred method.
    – user21973
    Commented Mar 14, 2013 at 9:43

8 Answers 8

8
votes

KeePass Password Safe is an open source solution you may want to check out. It is mainly designed for Windows but it can be ran from a Linux box, details here.

2
  • 2
    -1 The OP is specifically looking for a solution that is "synchronizable", and he specifically said not kepassx, which was/is a port of KeePass. Commented Jan 16, 2011 at 18:52
  • 1
    @Josh KeePass is "synchronizable" it also has some additional plugins to cover other sync/back-up scenarios.
    – oleksii
    Commented Jan 2, 2012 at 21:13
6
votes

I don't know any tool, but you can save your passwords in text file and encrypt with your private key with pass-phrase so only you can access the file.

6
votes

One thing you could look at would be combining git and a password safe program like KeePass or Password Safe. Gits useful as it works pretty well cross-platform and setting up and synchronizing data with it is pretty easy.

I use git for synchronizing files across multiple systems and it works pretty well. One problem is that you'd need to make your server available from all the locations you want to synchronize from, which will likely mean exposing a service or VPN endpoint on the Internet. Git runs over SSH by default so, if properly configured, it shouldn't pose too much of a risk.

4
votes

I use a combination of Password Safe, which now has a Linux beta for storing and generating passwords. I combine that with running Dropbox to synchronize the password database across multiple computers for me at the same time. Works like a charm for me.

4
votes

I use 1Password on the Mac, it has support for macOS, iPhone, iPad, Windows and Android. It can use a DAV server or Wi-Fi to synchronize between clients.

3
votes

In the mean time I found out that clipperz community edition can be used as such a thing. It allows you to host it on your own server as a web service. Master password is first encrypted localy and then sent to your server. After you login, you get an interface, and a feature to directly login to other services from clipperz. Also supports one-time passphrases. More info here.

1
vote

(cross posting from another question geared for corporate users)

I've worked with "Secret Server" at http://www.thycotic.com/ . I can provision a single password and share it among as many or as few individuals as I want.

There is an audit trail, and a great search functionality built into the web application. There is also an online "cloud" version of the application that is free for one user.

You can create a new secret for each device you own, and add your own as needed:

Security Choices

All access to this database is secured by local, or Active Directory credentials. If you choose to do so, you can have seamless login (SSO) to access the database for the currently logged in user over Kerberos/NTLM.

Overall, I think this is a good choice for a team, and general repository for corporate security information.

1
  • 1
    Sorry, but a Password manger site that redirects all its HTTPS traffic to HTTP doesn't look trustworthy. Commented Aug 14, 2011 at 12:20
0
votes

You can try:

Most of them support password management and synchronization, so you can share your passwords for multiple devices.

See also:

You must log in to answer this question.

Not the answer you're looking for? Browse other questions tagged .