Using ccrypt as a password manager

A lot of these tools on the front page today. I think a lot of them only contain 40-60% of what is required to be useful. Any password safe needs to:<p>- somehow work on my phone, not just because I sign into things when I&#x27;m away from my desk but also because I&#x27;m not going to manually copy all the passwords into my phone<p>- generate secure passwords for me when I need to enter one<p>- record passwords I use to help me migrate if I&#x27;m not using a safe already<p>- import passwords from other password safes<p>- support filling the passwords into the page, so that I don&#x27;t have to open a terminal, decrypt, copy, paste and possibly re-encrypt<p>- support two factor authentication systems<p>This isn&#x27;t a complete list, it&#x27;s a minimum. It&#x27;s also nice to support multiple forms of two factor auth, in case my phone gets stolen and it&#x27;s nice to have a form filler too.<p>It&#x27;s ok to be a &quot;unix-style tool&quot; that does one thing and one thing only, but you need to have other tools for doing every other feature that is required.

Use pass[1] if you want to use the command line, it uses GPG to encrypt each password and git to version them. It&#x27;s pretty nifty.<p>[1]: <a href="http://www.zx2c4.com/projects/password-store/" rel="nofollow">http:&#x2F;&#x2F;www.zx2c4.com&#x2F;projects&#x2F;password-store&#x2F;</a>

ccrypt uses a single iteration of a hash function to derive the encryption key from your passphrase, which provides very weak protection against exhaustive searches for your passphrase.<p>For encrypting a single file with a passphrase, I just use GPG: `gpg -c` to encrypt, and `gpg -d` to decrypt.