[ANN] Encrypted Credential Store for Windows
vila
v.ladeuil+lp at free.fr
Sat Jan 29 14:00:53 UTC 2011
>>>>> Gordon Tyler <gordon at doxxx.net> writes:
> Hi all,
> I'd like to announce a new project called bzr-wincrypt, a credential
> store for Bazaar that uses Windows's CryptoAPI to store and retrieve
> encrypted passwords.
> To install, go to your Bazaar plugins directory and:
> bzr branch lp:bzr-wincrypt wincrypt_credential_store
> To use:
> C:\> bzr wc-register <scheme> <host> <user>
> Password: <your password>
Excellent !
> <scheme> should be something like 'http' or 'ftp'. It won't work for ssh
> or sftp since Bazaar requires the use of an ssh-agent for those schemes.
We recommend using ssh agents because they are more suited for ssh
connections because they are audited for security whereas
authentication.conf and bzr hasn't been yet (and keeping small code
bases for audit purposes is the Right Thing to do). Your plugin does
exactly that.
> <host> must be the exact host used in the branch URL that requires
> authentication.
Is this required by wincrypt ? Does it mean you don't support
'.example.com' being reusable for 'x.example.com' and 'y.example.com' ?
> The encrypted password is stored in the wincrypt.conf file in your
> Bazaar config directory. The encrypted form is supposedly only
> decrypt-able by the same logged in user on the same machine.
Cool,
Vincent
More information about the bazaar
mailing list