Simple password manager. Stores secrets in encrypted tab-delimited table.
Reason this release was yanked:
broken package
Project description
Introduction
Keybox is a secure store for passwords, keys, and other secrets.
There is a Python API (import keybox), a runnable package (python3 -m keybox) and a wrapper script (keybox, created by setuptools).
Keybox is completely offline. All secrets stay safely in a local file. Nothing is sent anywhere, unless you explicitly set up network synchronization using some other tool.
Features:
Data encrypted using strong encryption (PyNaCl)
Simple tab-delimited file format
Shell-like text user interface
Security:
Master password is saved in memory for as long as the program runs.
Neither the password nor decrypted data are ever written to disk.
Portability:
The script should run on any system with Python3 installed.
Requires no installation. You can bring your keybox with you anywhere.
Can be contained in a single Python file (see Static Distribution below)
Dependencies:
POSIX OS
Python 3.7 or later
PyNaCl, blessed, pyperclip
Installation
Install Python package together with the keybox wrapper script, from PyPI:
pip3 install keybox
That’s it. PIP should pull in the required dependencies.
Alternatively, install from source:
python3 setup.py install
The package can also be run directly, without installation:
python3 -m keybox
Dependencies:
/usr/share/dict/words
required for pwgen
Debian: apt install wamerican
blessed, pyperclip - terminal utility
argon2-cffi - optional, replaces argon2 from PyNaCl when available
pytest, pexpect - for tests
Getting Started
Run the program, choose a master password. A new keybox file will be created.
You are now in the shell. The basic workflow is as follows:
add some passwords
list the records
select a record
print the password
quit
Type help for a list of all commands.
Config file
The default config file path is ~/.keybox/keybox.conf. It can be used to point to a different location for the keybox file:
[keybox] path = ~/vcs/keybox/keybox.safe
The default path is ~/.keybox/keybox.safe.
Password Generator
A bundled password generator can be called from command line (keybox pwgen) or internally from the shell. In the shell, try <tab> when asked for a password (in the add command).
Pwgen is based on the system word list that is usually found in /usr/share/dict/words. By default, it generates a password from two concatenated words, altered by adding two uppercase letters and one digit somewhere inside the password.
This gives around 50 bits of entropy on my system (Password strength).
Static Distribution
Call make zipapp to create a zipapp file containing all sources. The zipapp file is written to dist directory and is directly executable by Python.
The make target uses zipapp module which is available since Python 3.5.
Development
Build docs:
make -C docs html
Run tests:
make test
Show test code coverage:
make htmlcov
Build and check package:
make build make check
The Project Name
There might be some confusion between this Keybox project and GnuPG project, which has something called “a keybox file (.kbx)” and a tool to handle it, kbxutil.
This Keybox is completely unrelated to the GnuPG one.
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Hashes for keybox-0.4-cp310-cp310-macosx_10_15_x86_64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 68e8d0547fb47fa360aacce77f7bde12e3ab42a87e1f94109a53ad6fda5f0b15 |
|
MD5 | 06df17bda9d69ce2f47db1f9395f4968 |
|
BLAKE2b-256 | 73fd8cc75b0c6a4665bac241b46825ec1a969e238f3c72250d8dc587dbbe8052 |