safedb 0.01.0001 → 0.01.0002
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/README.md +53 -1
- data/lib/version.rb +1 -1
- metadata +1 -2
- data/lib/keytools/PRODUCE_RAND_SEQ_USING_DEV_URANDOM.txt +0 -0
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: eb19bd4918cd739c9ca8faac2d3666bf2fbc1d59d885f6ba528c6fdd051cc202
|
|
4
|
+
data.tar.gz: b454484ca5af7033feffda817d00f24829b2640d69038930ed2f2db7e05a2c90
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 59a0722bb96c8ca5fbde46dd28d185ce21850cb1669b9ce8076336f0520b1585f89ba8273a19502891a701b5819c9582aa158f09413db73c198b7d58d6e4c156
|
|
7
|
+
data.tar.gz: e94af140d24fe594c56be30d7ff379bd6d81d1d037e3d6f3d89edffa13df5182ab07e3064244f1cc3cacc55a6a1f26caa7a044da6cf1bbb542ca4e337b042e69
|
data/README.md
CHANGED
|
@@ -1,6 +1,43 @@
|
|
|
1
1
|
safe [](http://travis-ci.org/TwP/inifile)
|
|
2
2
|
==========
|
|
3
3
|
|
|
4
|
+
|
|
5
|
+
## safe push | safe pull
|
|
6
|
+
|
|
7
|
+
Working with <tt>remote (off-site) storage</tt> and <tt>sync-ing safe books</tt> between **different computers** is done using <tt>safe push</tt> and <tt>safe pull</tt>. Even with a single laptop you need a backup and restore process and this push pull is in-built and ready to go.
|
|
8
|
+
|
|
9
|
+
The process employs
|
|
10
|
+
|
|
11
|
+
- a <tt>git repository</tt> to push and pull crypt material to and from
|
|
12
|
+
- a usb key, mobile phone and/or email to stash a small file containing salts
|
|
13
|
+
|
|
14
|
+
Attackers would need to bring together the crypt material, the salt file and your password, in order to access the safe's credentials.
|
|
15
|
+
|
|
16
|
+
### Command to Acquire Repository State Key
|
|
17
|
+
|
|
18
|
+
```
|
|
19
|
+
git log -1 --format="%h" HEAD
|
|
20
|
+
```
|
|
21
|
+
|
|
22
|
+
## safe's delivery pipeline
|
|
23
|
+
|
|
24
|
+
Visit this Rakefile for an example of how to build, test, version and release.
|
|
25
|
+
|
|
26
|
+
https://github.com/tslocke/hobo/blob/master/Rakefile
|
|
27
|
+
|
|
28
|
+
|
|
29
|
+
safe has an agile and automated delivery pipeline that assures quality, continuity and usability in the major Linux environments including Ubuntu, RHEL, CoreOS, Amazon Linux and Suse Linux.
|
|
30
|
+
|
|
31
|
+
The pipeline process is triggered when new software arrives in the safedb github repository. When this happens
|
|
32
|
+
|
|
33
|
+
- Jenkins picks up the latest software
|
|
34
|
+
- Rake and Minitest are used to build and unit test the software
|
|
35
|
+
- Docker is used to system test safedb in the key Linux environments
|
|
36
|
+
- versioning is applied using the date/time and Git's commit hashes
|
|
37
|
+
- if tests pass the safedb gem is deployed to RubyGems.org
|
|
38
|
+
- website documentation is built and posted to [safedb.net](https://www.safedb.net)
|
|
39
|
+
|
|
40
|
+
|
|
4
41
|
safe database introduction
|
|
5
42
|
-----------
|
|
6
43
|
**A safe database contains books that you login to.** A book contains **`chapters`** and chapters contain **`verses`**. Each verse has a number of lines which are just key/value pairs.
|
|
@@ -318,6 +355,17 @@ In effect, safe can start VPNs, wireless connections, launch Firefox with certif
|
|
|
318
355
|
|
|
319
356
|
## Generating Credentials
|
|
320
357
|
|
|
358
|
+
The most powerful known technique for generating a random sequence of characters on Linux involves the <tt>urandom</tt> command.
|
|
359
|
+
|
|
360
|
+
### urandom command example
|
|
361
|
+
|
|
362
|
+
```
|
|
363
|
+
head /dev/urandom | tr -dc A-Za-z0-9 | head -c 18 ; echo ''
|
|
364
|
+
head /dev/urandom | tr -dc A-Za-z0-9 | head -c 20 ; echo ''
|
|
365
|
+
```
|
|
366
|
+
|
|
367
|
+
## Generating Credential Types
|
|
368
|
+
|
|
321
369
|
The following can be generated from a single command
|
|
322
370
|
|
|
323
371
|
- password strings configurable by length, set of printable characters and encoding
|
|
@@ -329,7 +377,7 @@ The following can be generated from a single command
|
|
|
329
377
|
|
|
330
378
|
Once the above are locked inside your safe - you
|
|
331
379
|
|
|
332
|
-
|
|
380
|
+
### Did you know?
|
|
333
381
|
|
|
334
382
|
Did you know that
|
|
335
383
|
- plaintext credentials are written by git config credential.helper store
|
|
@@ -339,6 +387,10 @@ Did you know that
|
|
|
339
387
|
|
|
340
388
|
## Configure Length of Generated Password
|
|
341
389
|
|
|
390
|
+
```
|
|
391
|
+
head /dev/urandom | tr -dc A-Za-z0-9 | head -c 18 ; echo ''
|
|
392
|
+
head /dev/urandom | tr -dc A-Za-z0-9 | head -c 20 ; echo ''
|
|
393
|
+
```
|
|
342
394
|
|
|
343
395
|
Visit the below - has perfect parameters for configuring the output of a generating credential.
|
|
344
396
|
|
data/lib/version.rb
CHANGED
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: safedb
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.01.
|
|
4
|
+
version: 0.01.0002
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Apollo Akora
|
|
@@ -92,7 +92,6 @@ files:
|
|
|
92
92
|
- lib/extension/string.rb
|
|
93
93
|
- lib/factbase/facts.safedb.net.ini
|
|
94
94
|
- lib/interprete.rb
|
|
95
|
-
- lib/keytools/PRODUCE_RAND_SEQ_USING_DEV_URANDOM.txt
|
|
96
95
|
- lib/keytools/kdf.api.rb
|
|
97
96
|
- lib/keytools/kdf.bcrypt.rb
|
|
98
97
|
- lib/keytools/kdf.pbkdf2.rb
|
|
Binary file
|