This is exciting. My only request here is: whenever it works please release a standalone wasm file somewhere (anywhere). So many projects either require building the wasm themselves, or instead of releasing a .wasm, they release a JS wrapper that auto-loads the wasm/wasm-imports. Its a pain to try to extract the wasm out of those projects.

What I am doing is to create a omnikee-lib crate within the project that will get compiled to WASM, not just plain keepass, because I need additional adapter methods to interface with the web part of the application. I don’t have the bandwidth to turn keepass into a general WASM package that could be npm installed at the moment. As I am dogfooding the crate, I might get to a point where I know what a good JS interface for it would be, though, and the omnikee-lib crate could become the official WASM interface for keepass.

sweet! I sent you the invite.

Currently, SSH key management is not supported, but it would probably be possible to implement the SSH agent protocol in the Rust part of the application. I see that russh has a SSH agent server implementation. Let me know if you are interested in contributing such a feature - I am currently working on exposing all the custom entry fields in the UI, so the project would almost be ready.

thanks for your interest! I have sent you a response with an invite link.

I think the Google as an identity provider example is misleading. The more common use case will be medium to small companies where several admins/developers need to login to various servers and where manually adding and revoking keys across these servers will be cumbersome.

As the other commenter said, in those cases, the organization would also deploy its own IDP.

Here is an exported result list from Kagi that should be accessible without an account.

deleted by creator

OK, so cases where you control both ends of the communication. Thanks for the clarification.

I’m a developer and would appreciate you going into more specifics about which certificates you suggest pinning.

12.5/8=1.5625, so the Euro price went up by 56.25%

I have been using it for the last 3 months to expose services from my home internet (plex, wireguard, etc.) through a VPS and I’m pretty happy with it. It’s relatively simple to set up, I haven’t had any outages so far, and it’s nice that it supports UDP port forwarding as well as TCP (for wireguard).

You could go even further and use hard links. That way, you can have two paths pointing to the same data on the partition, with the space getting cleaned up only after all references to it are removed.

As another German, I can confirm that the “first e in mesmer” way is how Germans would pronounce it. See for example 11seconds into this German video also officially from SUSE’s YouTube channel - a SUSE employee and German native speaker who is moderating a series of talks is using that pronunciation.

It’s just a tiny mistake that most Germans are used to hearing Americans make all the time (see also Porsche which is also not pronounced porsh, nor por-shay, but porsh-eh) and will politely ignore, but since this aims to be an educational video, should be pointed out to be slightly incorrect

Hey URL, go and fetch your friend JSON!

Makes perfect sense.

Right! The last I remember hearing the “closed source is more secure” argument was about fifteen years or so ago, so it’s surprising that it is being pulled up from the dead.

From the FAQ of the Sunbird website (the tech powering Nothing Chats):

Will the app be open source?

Some of the messaging community believes that software that is open source is more secure. It is our view that it is not. The more visibility there is into the infrastructure and code, the easier it is to penetrate it. By design, open source software is distributed in nature. There is no central authority to ensure quality and maintenance and by putting that responsibility on Sunbird, development would not be feasible. Open source vulnerabilities typically stem from poorly written code that leave gaps, which attackers can use to carryout malicious activities.

To help satisfy our own ambitious goals of providing total privacy and security, we are currently undergoing a third party audit that will validate our security, encryption and data policies and plan on receiving ISO 27001 certification after launch.

This was a huge warning sign when the first round of news about Nothing Chats came around, so I’m glad we’re now getting early confirmation that security by obscurity still is a horrible idea and doesn’t work

I’ve been very happy with Home Assistant. There are zigbee USB sticks such as ConBee that work well with it, and home assistant runs on many different types of computers including Raspberry pi.