Allways asked for keyfile

sbidy / KeePass-KeyManager

A public key manager to manage mutlible x509 certificates for a KeePass password database.

GNU General Public License v3.0

38 stars 6 forks source link

Allways asked for keyfile #8

Open vmaxdragon opened 6 years ago

vmaxdragon commented 6 years ago

Hi, I'm testing this plugin for using a smart card. I generated a new database as described in the tutorial. But if I open the database allways I have to chose the keyfile. Is this normal?

Best regards, Harry

sbidy commented 6 years ago

Please rename the p7mkey-File to the same name as the database file name and save the (encrypted) key file in the same folder.

Example: C:\Test.kdbx (database) - C:\Test.p7mkey (key file).

vmaxdragon commented 6 years ago

Thanks. This works. But is this not unsecure? I thought, the keyfile must not be in the same folder as the database...

sbidy commented 6 years ago

Nope, the Key-File is encrypted (enveloped) with your (certificate) Pub.-Key. A recommendation is, to protect the Priv.-Key with a PIN or password. For the best security you should use a SmartCard/HSM for protecting the private key.