CentOS - Sep 2017 - KeePassX replacement

I have been using the KeePassX password manager on CentOS 6 and 7 for some time
and it works pretty well. On my Windows machine I use KeePass which offers a
number of features missing from KeePassX, I also sync the database between
several machines, including Android units where I use keepass2android. Database
compatibility is thus required.

KeePassX, however, does not seem to be maintained any more, the last update was
just a bit less than a year ago. It also has some annoying bugs, including where
switching keyboards on the computer corrupts the username and the password if
they include any character outside the ASCII range.

There seems to be a community fork called KeePassXC and I would like to ask if
anyone is using this password manager? It is not in EPEL, nor in any other
standard repository, only through an unofficial repository at
https://copr.fedorainfracloud.org/coprs/bugzy/keepassxc/,

I have been using KeePassXC (though mostly on Debian) for quite a while now and 
am happy to report it works well.  Nothing springs to mind that annoys me and 
it's a decent drop in replacement. 

My setup sounds pretty similar to your own (also use keepass2android, though 
not KeePass on Windows).

I would be inclined to compile from source yourself rather than use an 
unofficial repo you have no reason to trust for such a sensitive application.

I'm not trying to besmirch the good name of copr.fedorainfracloud.org/bugzy
but
I've never heard of them and if you hadn't either that would give me
pause for
thought before I let their binaries at my passwords.

On Fri 15 Sep 2017 @ 21:43, H wrote:
>I have been using the KeePassX password manager on CentOS 6 and 7 for some
time and it works pretty well. On my Windows machine I use KeePass which offers
a number of features missing from KeePassX, I also sync the database between
several machines, including Android units where I use keepass2android. Database
compatibility is thus required.
>
>KeePassX, however, does not seem to be maintained any more, the last update
was just a bit less than a year ago. It also has some annoying bugs, including
where switching keyboards on the computer corrupts the username and the password
if they include any character outside the ASCII range.
>
>There seems to be a community fork called KeePassXC and I would like to ask
if anyone is using this password manager? It is not in EPEL, nor in any other
standard repository, only through an unofficial repository at
https://copr.fedorainfracloud.org/coprs/bugzy/keepassxc/,
>
>_______________________________________________
>CentOS mailing list
>CentOS at centos.org
>https://lists.centos.org/mailman/listinfo/centos
-- 
Tom Longfield
e: tomlongfield at gmail.com | t: 07507916719
PGP: 374C 705A 0CB4 783A 2692  A978 88A0 D5FC 5301 63FA
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: not available
URL:
<http://lists.centos.org/pipermail/centos/attachments/20170916/088b81f3/attachment-0001.sig>

On 2017-09-16 12:55, Tom Longfield wrote:
> I have been using KeePassXC (though mostly on Debian) for quite a
> while now and am happy to report it works well.? Nothing springs to
> mind that annoys me and it's a decent drop in replacement.
> My setup sounds pretty similar to your own (also use keepass2android,
> though not KeePass on Windows).
>
> I would be inclined to compile from source yourself rather than use an
> unofficial repo you have no reason to trust for such a sensitive
> application.
>
> I'm not trying to besmirch the good name of
> copr.fedorainfracloud.org/bugzy but I've never heard of them and if
> you hadn't either that would give me pause for thought before I let
> their binaries at my passwords.
>
> On Fri 15 Sep 2017 @ 21:43, H wrote:
>> I have been using the KeePassX password manager on CentOS 6 and 7 for
>> some time and it works pretty well. On my Windows machine I use
>> KeePass which offers a number of features missing from KeePassX, I
>> also sync the database between several machines, including Android
>> units where I use keepass2android. Database compatibility is thus
>> required.
>>
>> KeePassX, however, does not seem to be maintained any more, the last
>> update was just a bit less than a year ago. It also has some annoying
>> bugs, including where switching keyboards on the computer corrupts
>> the username and the password if they include any character outside
>> the ASCII range.
>>
>> There seems to be a community fork called KeePassXC and I would like
>> to ask if anyone is using this password manager? It is not in EPEL,
>> nor in any other standard repository, only through an unofficial
>> repository at https://copr.fedorainfracloud.org/coprs/bugzy/keepassxc/,
>>
>> _______________________________________________
>> CentOS mailing list
>> CentOS at centos.org
>> https://lists.centos.org/mailman/listinfo/centos
>
>
>
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> https://lists.centos.org/mailman/listinfo/centos
AFAIK the KeePassXC is a package in Fedora, so it could be trusted.

I replaced KeePassX 1.x with this with a extra step of upgrading to
KeePassX 2.x first.

//Zdenek

On 16/09/17 11:55, Tom Longfield wrote:
> I have been using KeePassXC (though mostly on Debian) for quite a while 
> now and am happy to report it works well.? Nothing springs to mind that 
> annoys me and it's a decent drop in replacement.
> My setup sounds pretty similar to your own (also use keepass2android, 
> though not KeePass on Windows).
> 
> I would be inclined to compile from source yourself rather than use an 
> unofficial repo you have no reason to trust for such a sensitive 
> application.
> 
> I'm not trying to besmirch the good name of 
> copr.fedorainfracloud.org/bugzy but I've never heard of them and if you
> hadn't either that would give me pause for thought before I let their 
> binaries at my passwords.
> 
I'm in a similar position presently, evaluating at password manager apps 
and had also come across that KeePassXC build.

I briefly installed the above package to evaluate and also intend to 
rebuild it for my own use. Another concern for me was the use of the 
'centos' dist tag when the package clearly isn't a 'centos'
package.
I've got as far as confirming the validity of the source tarball in the 
SRPM and checking the SPEC file. Everything looks fine, but as 
previously mentioned I would still rebuild such a sensitive package for 
my own use.

The only other potential issue I see is that the latest KeePassXC 
requires a newer version of libgcrypt, which the repo above packages as 
libgcrypt16 (libgcrypt version 1.6.6) on el7. The release of 1.6 broke 
ABI compatibility with version 1.5 in el7. I have not tried building 
KeePassXC against libgcrypt-1.5 in el7 to know if that is viable.

> On Fri 15 Sep 2017 @ 21:43, H wrote:
>> I have been using the KeePassX password manager on CentOS 6 and 7 for 
>> some time and it works pretty well. On my Windows machine I use 
>> KeePass which offers a number of features missing from KeePassX, I 
>> also sync the database between several machines, including Android 
>> units where I use keepass2android. Database compatibility is thus 
>> required.
>>
>> KeePassX, however, does not seem to be maintained any more, the last 
>> update was just a bit less than a year ago. It also has some annoying 
>> bugs, including where switching keyboards on the computer corrupts the 
>> username and the password if they include any character outside the 
>> ASCII range.
>>
>> There seems to be a community fork called KeePassXC and I would like 
>> to ask if anyone is using this password manager? It is not in EPEL, 
>> nor in any other standard repository, only through an unofficial 
>> repository at https://copr.fedorainfracloud.org/coprs/bugzy/keepassxc/,
>>

H <agents at meddatainc.com> wrote:
> I have been using the KeePassX password manager on CentOS 6 and 7 for
> some time and it works pretty well. On my Windows machine I use
> KeePass which offers a number of features missing from KeePassX, I
> also sync the database between several machines, including Android
> units where I use keepass2android. Database compatibility is thus
> required.
Are you aware that KeePass 2 works under Linux, with mono? There are
also ports for Android, but I've never tried them.

You may have reasons to prefer KeePassX over KeePass 2, though.

-- 
Yves Bellefeuille
<yan at storm.ca>

G

Sent from IBM Verse


   Yves Bellefeuille --- Re: [CentOS] KeePassX replacement --- 
    From:"Yves Bellefeuille" <yan at storm.ca>To:"CentOS
mailing list" <centos at centos.org>Date:Sat, Sep 16, 2017 1:45
PMSubject:Re: [CentOS] KeePassX replacement
  
    H <agents at meddatainc.com> wrote:> I have been using the KeePassX
password manager on CentOS 6 and 7 for> some time and it works pretty well.
On my Windows machine I use> KeePass which offers a number of features
missing from KeePassX, I> also sync the database between several machines,
including Android> units where I use keepass2android. Database compatibility
is thus> required.Are you aware that KeePass 2 works under Linux, with mono?
There arealso ports for Android, but I've never tried them.You may have
reasons to prefer KeePassX over KeePass 2, though.-- Yves Bellefeuille<yan at
storm.ca>_______________________________________________CentOS mailing
listCentOS at centos.orghttps://lists.centos.org/mailman/listinfo/centos

Sent from IBM Verse


   Yves Bellefeuille --- Re: [CentOS] KeePassX replacement --- 
    From:"Yves Bellefeuille" <yan at storm.ca>To:"CentOS
mailing list" <centos at centos.org>Date:Sat, Sep 16, 2017 1:45
PMSubject:Re: [CentOS] KeePassX replacement
  
    H <agents at meddatainc.com> wrote:> I have been using the KeePassX
password manager on CentOS 6 and 7 for> some time and it works pretty well.
On my Windows machine I use> KeePass which offers a number of features
missing from KeePassX, I> also sync the database between several machines,
including Android> units where I use keepass2android. Database compatibility
is thus> required.Are you aware that KeePass 2 works under Linux, with mono?
There arealso ports for Android, but I've never tried them.You may have
reasons to prefer KeePassX over KeePass 2, though.-- Yves Bellefeuille<yan at
storm.ca>_______________________________________________CentOS mailing
listCentOS at centos.orghttps://lists.centos.org/mailman/listinfo/centos

Sent from IBM Verse


   Yves Bellefeuille --- Re: [CentOS] KeePassX replacement --- 
    From:"Yves Bellefeuille" <yan at storm.ca>To:"CentOS
mailing list" <centos at centos.org>Date:Sat, Sep 16, 2017 1:45
PMSubject:Re: [CentOS] KeePassX replacement
  
    H <agents at meddatainc.com> wrote:> I have been using the KeePassX
password manager on CentOS 6 and 7 for> some time and it works pretty well.
On my Windows machine I use> KeePass which offers a number of features
missing from KeePassX, I> also sync the database between several machines,
including Android> units where I use keepass2android. Database compatibility
is thus> required.Are you aware that KeePass 2 works under Linux, with mono?
There arealso ports for Android, but I've never tried them.You may have
reasons to prefer KeePassX over KeePass 2, though.-- Yves Bellefeuille<yan at
storm.ca>_______________________________________________CentOS mailing
listCentOS at centos.orghttps://lists.centos.org/mailman/listinfo/centos

On Sat, September 16, 2017 1:45 pm, Yves Bellefeuille
wrote:
> H <agents at meddatainc.com> wrote:
>
>> I have been using the KeePassX password manager on CentOS 6 and 7 for
>> some time and it works pretty well. On my Windows machine I use
>> KeePass which offers a number of features missing from KeePassX, I
>> also sync the database between several machines, including Android
>> units where I use keepass2android. Database compatibility is thus
>> required.
>
> Are you aware that KeePass 2 works under Linux, with mono? There are
> also ports for Android, but I've never tried them.
>
> You may have reasons to prefer KeePassX over KeePass 2, though.
I for one use keepassx. My password database is synchronized between
variety of systems, and I can view/edit it on: CentOS, FreeBSD, MS
Windows, Android (and should be able on any derivatives of those). I
didn't try iOS as currently I don't have a need in that.

Incidentally, does anybody know if there is any necessity in keepassx to
be patched? Did I read the original post correctly: there is no activity
on the development site for long time? Should there be any? (As, I would
say for comparison: cvs is so established software that there is no
development to expect, only if there are any security holes found those
need to be patched). Any insight on KeePassX anybody?

Valeri
>
> --
> Yves Bellefeuille
> <yan at storm.ca>
>
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> https://lists.centos.org/mailman/listinfo/centos
>

++++++++++++++++++++++++++++++++++++++++
Valeri Galtsev
Sr System Administrator
Department of Astronomy and Astrophysics
Kavli Institute for Cosmological Physics
University of Chicago
Phone: 773-702-4247
++++++++++++++++++++++++++++++++++++++++

On 09/16/2017 06:55 AM, Tom Longfield wrote:
> I have been using KeePassXC (though mostly on Debian) for quite a while now
and am happy to report it works well.? Nothing springs to mind that annoys me
and it's a decent drop in replacement.
> My setup sounds pretty similar to your own (also use keepass2android,
though not KeePass on Windows).
>
> I would be inclined to compile from source yourself rather than use an
unofficial repo you have no reason to trust for such a sensitive application.
>
> I'm not trying to besmirch the good name of
copr.fedorainfracloud.org/bugzy but I've never heard of them and if you
hadn't either that would give me pause for thought before I let their
binaries at my passwords.
>
> On Fri 15 Sep 2017 @ 21:43, H wrote:
>> I have been using the KeePassX password manager on CentOS 6 and 7 for
some time and it works pretty well. On my Windows machine I use KeePass which
offers a number of features missing from KeePassX, I also sync the database
between several machines, including Android units where I use keepass2android.
Database compatibility is thus required.
>>
>> KeePassX, however, does not seem to be maintained any more, the last
update was just a bit less than a year ago. It also has some annoying bugs,
including where switching keyboards on the computer corrupts the username and
the password if they include any character outside the ASCII range.
>>
>> There seems to be a community fork called KeePassXC and I would like to
ask if anyone is using this password manager? It is not in EPEL, nor in any
other standard repository, only through an unofficial repository at
https://copr.fedorainfracloud.org/coprs/bugzy/keepassxc/,
>>
>> _______________________________________________
>> CentOS mailing list
>> CentOS at centos.org
>> https://lists.centos.org/mailman/listinfo/centos
>
>
>
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> https://lists.centos.org/mailman/listinfo/centos
Ok, thanks. How does it compare feature wise with KeePass on Windows?