John Turner

@TomAtYubico I have spent a fair amount of time looking at the KeePass plugin code and if anyone can tell me I am wrong I would love to hear a...

I can later today, the important thing to notice here however is that KeeChallenge never gets access to the MP and therefore would need to ask for another one from...

Im not sure, I stopped using KeepassXC cause it had poor browser integration and KeeAgent is just a little more convenient than the one they setup

@strangeflower I am not nearly as much of an artists as you are however  Here is my terrible diagram, Important differences is that in the new scheme the...

I would need to look at the api more however my understanding is that all secret changes would require the change password dialog. However replacing the AES function could easily...

So this presents an interesting challenge, you cannot reencrypt the database in my checking without doing a password change meaning every time you save the database you must input both...

So yes, one implementation would require a master password +yubikey + yubikey password(challenge) every save of the database and has the upside of not requiring a secondary xml file. A...

Yes, but due to restrictions you would need to enter the password twice or just use the yuibkey without a "master" password

Technically their source code is at https://keepass.info/download.html I have not implemented either yet was waiting to see what wins out but I can implement the form to request the "password"...

>I remember looking into this a few months ago, and the people over at the SourceForge repo for KeePass didn't seem interested in implementing Yubikey natively. I hope things change,...