RE: Password Security and Distribution

Jeremy -

I've not found a better solution than PGP. Perhaps more a formalized
process for communicating password updates proactively is all you need.
Ideally, distributing passwords at 3am is too late.

In the past I've used small password database programs on a network
share. You are then left with verbal or PGP encrypted communications to
distribute a single new password to access the database versus
distributing all of the changed passwords. If you're interested try

There are others who read this list that prefer distributing passwords
on paper. You can't hack into a piece of paper :slight_smile: and if you have
physical access to the paper then you most likely have physical access
to the network equipment as well...


One of my guys found a package called Password Gorilla, which is
basically a GUI which sits on top of Password Safe that came out of
Counterpane in 2002 or so. Either allows you to organize passwords by
group and machine, and the whole database is encrypted by blowfish:

One thing I've been thinking of from my managed service/consulting
background is to have a main database which has all users/passwords for
all "companies" in a central database (LAMP architecture), then depending
on what a user has access to, a custom Password Safe database is created
for them. This would handle how to distribute password changes out to
admins who have varying levels of access. Sounds like about a week's
worth of work - if people voiced enough interest or if somebody cared to
help me out, I'd finally get motivated to write it and put it up on



That sounds like it could be useful. The major problem I have with password safe is that it is hard to do things like copy a group of passwords to another .dat file. That makes it hard to do anything put either keep several .dat files floating around for different users, aka accountants, programmers, managers.. Which leads to some of them being way out of date and people going back to the sticky note db method.. I have some of those myself I am sorry to say..

I also found this:

He goes into a lot of detail on how password safe works.. He also has a link to what he did in Python..