In light of the recent revelations of the Meltdown and Spectra CPU flaws I though there would be more interest in using
pass (password manager) along with the
pass-qubes (Split-GPG extension ) since the Qubes Security Bulletin mentioned using
Split-GPG as an extra layer of security with Qubes OS.
EDIT It should be noted that
split-gpg will offer an extra layer of security in general bu it does not offer protection against these CPU bugs as noted in the next post by HulaHoop’
They were mentioned previously in this thread but for ease of locating here are the links.
One of the reasons for this post is there may be users like myself that installed
pass and had it working properly but where unable to get
pass-qubes extension functioning. I haven’t figured out what is wrong, but I’m guessing it has something to do with the way the package manager installs
apt-get install pass
git clone, make install
Fortunately there is a easy workaround to get
pass-qubes extension working and as I’m sure you have guessed it only involves installing
pass manually. This can be accomplished as per the instructions on the
pass home page.
Also if you’re getting this error message after configuring everything properly it may indicate a manual install is necessary:
Error: qubes is not in the password store
It may be helpful when troubleshooting to know that this issue/bug may not be isolated to the
pass-qubes extensions. A Qubes user had a similar problem when trying to install two other
pass extensions. Not only that but a Fedora based VM was used so its not isolated to Debian either.
If any Qubes users are interested in step by step install instructions let me know and I will post them for you.