[119446] in North American Network Operators' Group
RE: Password repository
daemon@ATHENA.MIT.EDU (Blake Pfankuch)
Thu Nov 19 08:20:23 2009
From: Blake Pfankuch <bpfankuch@cpgreeley.com>
To: Jay Nakamura <zeusdadog@gmail.com>, NANOG <nanog@nanog.org>
Date: Thu, 19 Nov 2009 06:19:03 -0700
In-Reply-To: <9418aca70911181956l387bc17ar539615dacfdc2c05@mail.gmail.com>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
We have used Password Manager XP for quite some time. It supports differen=
t user roles, allows security to be set per folder, the encryption levels i=
t supports are insane, and it allows for a "database password" and then use=
r level authentication (which can be tied to NT authentication from the wor=
kstation). They also have a client for windows mobile devices. The client=
also runs in wine exceptionally well. You can configure it to do form fil=
ling, and you can define password expiration dates and it will remind you t=
hat passwords need changed. Also supports the ability to define a database=
log, so that all changes can be sent off to a log server. You can also ad=
d pretty detailed descriptions to the entry, and you can tie files into the=
entry as well. Works great for attaching a private key for access to serv=
ers via SSH. All of the displayed fields inside of each folder are complet=
ely customizable and quite easy to change. It supports multiple users pret=
ty well, however we have had to restore the database from backups once when=
a user was writing to the database over SSLVPN and the connection dropped.=
We have used it with a max of about 20 people and it worked great for tha=
t number, however as your database gets larger and larger it does take a wh=
ile to make some changes.
-----Original Message-----
From: Jay Nakamura [mailto:zeusdadog@gmail.com]
Sent: Wednesday, November 18, 2009 8:57 PM
To: NANOG
Subject: Password repository
Quick question, does anyone have software/combination of tools they recomme=
nd on centrally store various passwords securely?
Thanks.
