v1.0.0: Launch of PassMan - The Secure Command-Line Password Manager
I am delighted to announce the initial release of PassMan, a modern, open source, command-line password manager focused on speed, efficiency, and security.
This v1.0.0 release establishes the foundational architecture, utilizing industry-leading cryptographic standards to protect your sensitive data directly from your terminal.
Core Security Features:
Security is the primary feature of PassMan. This release incorporates several layers of defense:
- SQLCipher Database Encryption: Your entire vault is secured using SQLCipher, which provides 256-bit AES encryption for the underlying SQLite database file. This ensures all your data (passwords, usernames, notes) is encrypted at rest.
- Master Key Derivation (PBKDF2HMAC): Your Master Password never directly touches the database. Instead, it is used with a unique, securely stored salt and a high number of iterations (key stretching) via PBKDF2HMAC to derive a strong Key Encryption Key (KEK).
- Encrypted Primary Key Storage: A separate, random Primary Encryption Key (PEK) is generated and used as the direct encryption key for the database. This PEK is then encrypted by your derived KEK and saved to disk. This architecture prevents brute-force attacks against the PEK itself.
- Secure Session Management: The decrypted PEK is temporarily and securely cached in a short-lived session file with strict file permissions (0o600). This grants you seamless access for the default 1-hour timeout without re-entering your Master Password, balancing security and user experience.
How to Get Started:
Head over to the GitHub page and read the repository README on the main branch for up-to-date details on how to install the PassMan CLI, get started with commands, and a more in-depth look into the security features powering the application.
Support and Next Steps:
This is just the beginning. I welcome community input to make PassMan the best free and open source CLI password manager available.
- If you find a bug, please open a new issue.
- For feature suggestions or discussions, please use the Discussions tab.
bsamarji•2mo ago
I am delighted to announce the initial release of PassMan, a modern, open source, command-line password manager focused on speed, efficiency, and security.
This v1.0.0 release establishes the foundational architecture, utilizing industry-leading cryptographic standards to protect your sensitive data directly from your terminal.
Core Security Features:
Security is the primary feature of PassMan. This release incorporates several layers of defense:
- SQLCipher Database Encryption: Your entire vault is secured using SQLCipher, which provides 256-bit AES encryption for the underlying SQLite database file. This ensures all your data (passwords, usernames, notes) is encrypted at rest.
- Master Key Derivation (PBKDF2HMAC): Your Master Password never directly touches the database. Instead, it is used with a unique, securely stored salt and a high number of iterations (key stretching) via PBKDF2HMAC to derive a strong Key Encryption Key (KEK).
- Encrypted Primary Key Storage: A separate, random Primary Encryption Key (PEK) is generated and used as the direct encryption key for the database. This PEK is then encrypted by your derived KEK and saved to disk. This architecture prevents brute-force attacks against the PEK itself.
- Secure Session Management: The decrypted PEK is temporarily and securely cached in a short-lived session file with strict file permissions (0o600). This grants you seamless access for the default 1-hour timeout without re-entering your Master Password, balancing security and user experience.
How to Get Started:
Head over to the GitHub page and read the repository README on the main branch for up-to-date details on how to install the PassMan CLI, get started with commands, and a more in-depth look into the security features powering the application.
Support and Next Steps:
This is just the beginning. I welcome community input to make PassMan the best free and open source CLI password manager available.
- If you find a bug, please open a new issue.
- For feature suggestions or discussions, please use the Discussions tab.
Thank you for giving PassMan a try!