GNU gnu-pw-mgr "manages" passwords by re-computing them on demand.
It does an sha256 sum of a long, unguessable string stored in a
protected file conjoined with a never-recorded private permutation of
a domain name. The result is cropped and twiddled in repeatable ways
to satisfy the password requirements of the intended web site.
By basing the check sum on a permutation of a domain, it winds up
easier to have different passwords for different domains than to
overuse a single password.
Since its initial release, none of the algorithms have changed, so
previously created passwords will still be produced by this modified
program. Well, almost. Confirmation strings have a new algorithm.
See below.
v2.3 Release 2.3 (not announced)
add check for sequential characters
Chase Bank will not allow you to have 'abc' or any other three
character sequence in the password. The character set attributes
have been augmented with "no-sequence".
v2.3.1 Release 2.3.1
Stabilize confirmation ids
The confirmation value printed out is a hash based on the
confirmation string and the current password.
So, if the password changes, then so does the confirmation
string. Not ideal. The current version will print out both
the hashed-on-password value and the new value (using only
the password id and confirmation string).
online docs:
http://www.gnu.org/software/gnu-pw-mgr/manual/html_node/index.html
gnu-pw-id home: http://www.gnu.org/software/gnu-pw-mgr/
primary ftp: ftp://ftp.gnu.org/gnu/gnu-pw-mgr/
.tar.gz: ftp://ftp.gnu.org/gnu/gnu-pw-mgr/gnu-pw-mgr-2.3.1.tar.gz
bug reports: bug-gnu-pw-mgr at the usual GNU domain
bug archive: https://lists.gnu.org/mailman/listinfo/bug-gnu-pw-mgr
maintainer: Bruce Korb - bkorb at the usual GNU domain
--
If you have a working or partly working program that you'd like
to offer to the GNU project as a GNU package,
see https://www.gnu.org/help/evaluation.html.
