You are not logged in.

#1 2020-09-05 00:33:32

phonky
Member
Registered: 2008-12-19
Posts: 69

Running `pass` never requires me to enter the password anymore

I use `pass` for storing passwords.
I like its simplicity and that I can use it from the commandline.

When I started using it, to retrieve a password, e.g.

`pass server/root`


it would prompt me for my password (which I guess is the password in `gnome-keyring`. This is quite a complex rabbit hole as I never understood how all pieces work together).

At some point, it stopped asking my password.
Maybe in one of those prompts, some checkbox was set to "never ask again" - I don't know.

Fact is - I don't like that.
As a matter of fact, now just typing
`pass server/root` will print my password on the command line in plain text.

I want pass to prompt me again every time or at least for some cached time.

Is this `gpg-agent`?
I set `default-cache-ttl 300` in `~/.gnupg/gpg-agent.conf` but this does not seem to have any effect.

If I kill the running `gpg-agent`, as soon as I run `pass` it automatically gets started again.

I use i3 as DE.

Any idea?

Last edited by phonky (2020-09-05 00:38:45)

Offline

#2 2020-09-05 00:40:08

GaKu999
Member
From: US/Eastern
Registered: 2020-06-21
Posts: 696

Re: Running `pass` never requires me to enter the password anymore

Something keeping the agent alive and polling for passwords?

Idk what could do that and you aren’t giving details, what have you done in the gnupg config files?

Do you use any service that also uses the gpg-agent?

Did you take a peek at the wiki?


My reposSome snippets

Heisenberg might have been here.

Offline

#3 2020-09-05 00:48:05

phonky
Member
Registered: 2008-12-19
Posts: 69

Re: Running `pass` never requires me to enter the password anymore

Hey @GaKu999 thanks for chiming in.

I will provide any details requested.
`./.gnupg/gpg-agent.conf` only contains the ttl entry.
What other gnupg config file should I check?

I read lots of the wiki,like the GnuPG page or the gnome keyring page, and even PAM - which is where I started to get lost in the rabbit hole.

I don't know what other service I could be using which interacts with `gpg-agent`....I don't even know how to check that.

`.ssh/config` starts with `AddKeysToAgent yes` but I would assume that to be `ssh-agent`

Offline

#4 2020-09-05 01:00:48

phonky
Member
Registered: 2008-12-19
Posts: 69

Re: Running `pass` never requires me to enter the password anymore

I also have this in my `.i3/config`:

exec --no-startup-id /usr/lib/polkit-gnome/polkit-gnome-authentication-agent-1

Offline

#5 2020-09-05 04:35:43

phonky
Member
Registered: 2008-12-19
Posts: 69

Re: Running `pass` never requires me to enter the password anymore

If I kill all `gnome-kerying-daemon` instances I get back the prompt....

Offline

Board footer

Powered by FluxBB