Hallo,
Keepass (2/XC/X) only works with the OTP-Feature, which I didn’t manage to use (on several accounts). The Nitrokey Start hasn’t that feature at all (but the ECC ;-)) so I was looking for a way to use the Nitrokey to secure a Passwordmanager:
Keepass (2/XC/X) doesn’t work with the GPG-Smartcard, at least I didn’t find any useable way -for example to use the Nitrokey to decrypt the password in an ciphertext an pipe it into Keepass via shell.
Other Passwordmanagers? PWSafe is secure but hasn’t this feature as well (only Yubikeys).
That leaves me with “Pass” the simple and standard Linux passwordmanager. It encrypts every login as an gpg-file and IS THE ONLY?! passwordmanager which can be used with gpg-smartcard. But it lacks a timeout-feature, which means, you have to kill the gpg-agent every time to lock the database … so they developed “pass tomb” which adds this feature to pass … and with two other addons you can even use it with Firefox … but is this secure in the end?
The only way I see right now for a usable Passwordmanager to use with ALL nitrokeys is a GPG-Addon for KeePass (XC?) or at least a workaround via the commandline, please, please?
Niklas