/cryptopus

Cryptopus is a ruby on rails web application for storing and sharing passwords and other sensitive data. All data is stored encrypted in a database, safe from third party access.

Primary LanguageRubyGNU Affero General Public License v3.0AGPL-3.0

Welcome to Cryptopus

Cryptopus is a ruby on rails web application for storing and sharing passwords and other sensitive data. All data is stored encrypted in a database, safe from third party access.

Copyright © 2009 Andreas Zuber, Simon Josi, Marcel Härry, Martin Gafner and Markus Tschannen

This program is free software: you can redistribute it and/or modify it under the terms of the GNU Affero General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.

This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Affero General Public License for more details.

You should have received a copy of the GNU Affero General Public License along with this program. If not, see http://www.gnu.org/licenses/.

Features

  • Store usernames, passwords and further descriptions
  • Attach files
  • Data will be encrypted, including the attachments
  • There is no shared master password
  • Users can form groups
  • Passwords can be shared within groups
  • LDAP authentication
  • Autologout

Warning!

Please remember that putting all your passwords together in a database and making this database accessible over the internet might be a relevant security threat. The passwords and keys are only as safe as the host that is running cryptopus and the SSL-secured connections (never use an unencrypted connection!), as well (and this is the most important point) as the strength of your main password.

So calculate the risk this setup might pose and choose a good password. Cryptopus won’t make your passwords more secure! It simply gives you the possibility to manage them in a nice way, store them in a safe manner and share them with other people if you wish to do so.

Under no circumstances can we ever be held liable for password theft, lost passwords or any other inconvenience caused by using cryptopus. Please read this paragraph three more times, it’s important!

Requirements

  • Ruby 1.8.7-p370
  • rvm
  • bundle
  • mysql-server
  • optional: LDAP as a user directory

Installation Notes

  1. download: git clone git://github.com/puzzle/cryptopus.git
  2. cd cryptopus
  3. Install RVM (see https://rvm.io/rvm/install)
  4. rvm install ruby-1.8.7
  5. rvm use ruby-1.8.7-p370
  6. rvm gemset create cryptopus
  7. bundle
  8. cp config/database.yml-dist config/database.yml
  9. edit file database.yml
  10. set up database: mysql> create database cryptopus_production;
  11. mysql> grant all on cryptopus_production.* to 'cryptopus'@'localhost' identified by 'mypass'
  12. initialize database: rake db:migrate
  13. start server: scripts/server
  14. log into app with user root, first used password will be set automatically as password for this user

Contact Information

Cryptopus was made by the guys at Puzzle ITC. Please go to http://www.puzzle.ch/ in order to get in touch with us.