From 4d7b77e229c50bb971f1967de4e0b68713a72d4b Mon Sep 17 00:00:00 2001 From: Vasily Date: Sat, 20 Aug 2022 00:16:27 +0100 Subject: [PATCH] Update README.md --- README.md | 19 ++++++++++++++++--- www/server.go | 5 +++-- 2 files changed, 19 insertions(+), 5 deletions(-) diff --git a/README.md b/README.md index ae48eb0..9aa2847 100644 --- a/README.md +++ b/README.md @@ -2,10 +2,23 @@ [![GitHub release (latest SemVer)](https://img.shields.io/github/v/release/vsliouniaev/go-pass-cache?sort=semver)](https://github.com/vsliouniaev/go-pass-cache/releases/latest) [![Docker Pulls](https://img.shields.io/docker/pulls/vsliouniaev/pass-cache?color=blue)](https://hub.docker.com/r/vsliouniaev/pass-cache/tags) -GO upgraded version of https://github.com/vsliouniaev/pass-cache +Better than sending passwords directly through your instant messaging client. + + + +h1. Motivation + +Security is a compromise between convenience and safety. Sending passwords over +instant-messaging applications (Slack, Skype, Teams, etc) is endemic, particularly in +smaller companies, where security tooling tends to rank lower. + + + -Use this tool instead of sending passwords directly through your instant messaging client. The data is encrypted in your browser, then sent to the server and kept for 5 minutes in the server's RAM. You then send the id and the decrytpion key over IM, keeping the data and the key through separate channels. Once the client retrieves the data, it is deleted from the server and decrypted in the browser. -This tool adds very little friction while greatly increasing the security. Security is always a balance between ease-of-use and provided security. While not being particularly secure, the ease of use greatly improves overall security. I would not advise this approach for sending anything you truly want to keep safe, but it it is a great first step if you are currently sending this directly through Skype or Slack. \ No newline at end of file +This tool adds very little friction while greatly increasing the security. Security is always a balance between ease-of-use and provided security. While not being particularly secure, the ease of use greatly improves overall security. I would not advise this approach for sending anything you truly want to keep safe, but it it is a great first step if you are currently sending this directly through Skype or Slack. + + +This is the golang migrated version of https://github.com/vsliouniaev/pass-cache diff --git a/www/server.go b/www/server.go index 3a1ed42..188dfce 100644 --- a/www/server.go +++ b/www/server.go @@ -2,12 +2,13 @@ package www import ( "fmt" - "github.com/vsliouniaev/go-pass-cache/core" - "github.com/vsliouniaev/go-pass-cache/util" "html/template" "log" "net/http" "path/filepath" + + "github.com/vsliouniaev/go-pass-cache/core" + "github.com/vsliouniaev/go-pass-cache/util" ) type Server interface {