safedb 0.01.0001 → 0.01.0002
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/README.md +53 -1
- data/lib/version.rb +1 -1
- metadata +1 -2
- data/lib/keytools/PRODUCE_RAND_SEQ_USING_DEV_URANDOM.txt +0 -0
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: eb19bd4918cd739c9ca8faac2d3666bf2fbc1d59d885f6ba528c6fdd051cc202
|
|
4
|
+
data.tar.gz: b454484ca5af7033feffda817d00f24829b2640d69038930ed2f2db7e05a2c90
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 59a0722bb96c8ca5fbde46dd28d185ce21850cb1669b9ce8076336f0520b1585f89ba8273a19502891a701b5819c9582aa158f09413db73c198b7d58d6e4c156
|
|
7
|
+
data.tar.gz: e94af140d24fe594c56be30d7ff379bd6d81d1d037e3d6f3d89edffa13df5182ab07e3064244f1cc3cacc55a6a1f26caa7a044da6cf1bbb542ca4e337b042e69
|
data/README.md
CHANGED
|
@@ -1,6 +1,43 @@
|
|
|
1
1
|
safe [](http://travis-ci.org/TwP/inifile)
|
|
2
2
|
==========
|
|
3
3
|
|
|
4
|
+
|
|
5
|
+
## safe push | safe pull
|
|
6
|
+
|
|
7
|
+
Working with <tt>remote (off-site) storage</tt> and <tt>sync-ing safe books</tt> between **different computers** is done using <tt>safe push</tt> and <tt>safe pull</tt>. Even with a single laptop you need a backup and restore process and this push pull is in-built and ready to go.
|
|
8
|
+
|
|
9
|
+
The process employs
|
|
10
|
+
|
|
11
|
+
- a <tt>git repository</tt> to push and pull crypt material to and from
|
|
12
|
+
- a usb key, mobile phone and/or email to stash a small file containing salts
|
|
13
|
+
|
|
14
|
+
Attackers would need to bring together the crypt material, the salt file and your password, in order to access the safe's credentials.
|
|
15
|
+
|
|
16
|
+
### Command to Acquire Repository State Key
|
|
17
|
+
|
|
18
|
+
```
|
|
19
|
+
git log -1 --format="%h" HEAD
|
|
20
|
+
```
|
|
21
|
+
|
|
22
|
+
## safe's delivery pipeline
|
|
23
|
+
|
|
24
|
+
Visit this Rakefile for an example of how to build, test, version and release.
|
|
25
|
+
|
|
26
|
+
https://github.com/tslocke/hobo/blob/master/Rakefile
|
|
27
|
+
|
|
28
|
+
|
|
29
|
+
safe has an agile and automated delivery pipeline that assures quality, continuity and usability in the major Linux environments including Ubuntu, RHEL, CoreOS, Amazon Linux and Suse Linux.
|
|
30
|
+
|
|
31
|
+
The pipeline process is triggered when new software arrives in the safedb github repository. When this happens
|
|
32
|
+
|
|
33
|
+
- Jenkins picks up the latest software
|
|
34
|
+
- Rake and Minitest are used to build and unit test the software
|
|
35
|
+
- Docker is used to system test safedb in the key Linux environments
|
|
36
|
+
- versioning is applied using the date/time and Git's commit hashes
|
|
37
|
+
- if tests pass the safedb gem is deployed to RubyGems.org
|
|
38
|
+
- website documentation is built and posted to [safedb.net](https://www.safedb.net)
|
|
39
|
+
|
|
40
|
+
|
|
4
41
|
safe database introduction
|
|
5
42
|
-----------
|
|
6
43
|
**A safe database contains books that you login to.** A book contains **`chapters`** and chapters contain **`verses`**. Each verse has a number of lines which are just key/value pairs.
|
|
@@ -318,6 +355,17 @@ In effect, safe can start VPNs, wireless connections, launch Firefox with certif
|
|
|
318
355
|
|
|
319
356
|
## Generating Credentials
|
|
320
357
|
|
|
358
|
+
The most powerful known technique for generating a random sequence of characters on Linux involves the <tt>urandom</tt> command.
|
|
359
|
+
|
|
360
|
+
### urandom command example
|
|
361
|
+
|
|
362
|
+
```
|
|
363
|
+
head /dev/urandom | tr -dc A-Za-z0-9 | head -c 18 ; echo ''
|
|
364
|
+
head /dev/urandom | tr -dc A-Za-z0-9 | head -c 20 ; echo ''
|
|
365
|
+
```
|
|
366
|
+
|
|
367
|
+
## Generating Credential Types
|
|
368
|
+
|
|
321
369
|
The following can be generated from a single command
|
|
322
370
|
|
|
323
371
|
- password strings configurable by length, set of printable characters and encoding
|
|
@@ -329,7 +377,7 @@ The following can be generated from a single command
|
|
|
329
377
|
|
|
330
378
|
Once the above are locked inside your safe - you
|
|
331
379
|
|
|
332
|
-
|
|
380
|
+
### Did you know?
|
|
333
381
|
|
|
334
382
|
Did you know that
|
|
335
383
|
- plaintext credentials are written by git config credential.helper store
|
|
@@ -339,6 +387,10 @@ Did you know that
|
|
|
339
387
|
|
|
340
388
|
## Configure Length of Generated Password
|
|
341
389
|
|
|
390
|
+
```
|
|
391
|
+
head /dev/urandom | tr -dc A-Za-z0-9 | head -c 18 ; echo ''
|
|
392
|
+
head /dev/urandom | tr -dc A-Za-z0-9 | head -c 20 ; echo ''
|
|
393
|
+
```
|
|
342
394
|
|
|
343
395
|
Visit the below - has perfect parameters for configuring the output of a generating credential.
|
|
344
396
|
|
data/lib/version.rb
CHANGED
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: safedb
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.01.
|
|
4
|
+
version: 0.01.0002
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Apollo Akora
|
|
@@ -92,7 +92,6 @@ files:
|
|
|
92
92
|
- lib/extension/string.rb
|
|
93
93
|
- lib/factbase/facts.safedb.net.ini
|
|
94
94
|
- lib/interprete.rb
|
|
95
|
-
- lib/keytools/PRODUCE_RAND_SEQ_USING_DEV_URANDOM.txt
|
|
96
95
|
- lib/keytools/kdf.api.rb
|
|
97
96
|
- lib/keytools/kdf.bcrypt.rb
|
|
98
97
|
- lib/keytools/kdf.pbkdf2.rb
|
|
Binary file
|