Bug#730180: ITP: teampass -- WEB based password manager

[Carlos Alvarez <sharlie89@gmail.com>]

2013/11/22 Dominik George <nik@naturalnet.de>

Hi,

> * Package name    : teampass
>   Version         : 2.2.0
>   Upstream Author : Nils Laumaillé <nils@teampass.net>
> * URL             : http://www.teampass.net
> * License         : GNU AFFERO GPL3
>   Programming Lang: PHP, _javascript_
>   Description     : WEB based password manager

that looked promising. I tried the demo on your website, and also read
the comments on it. No offense, but I'm not so sure I'd entrust my
passwords to software who's developers apparently cannot run a demo of
their app without having it broken by demo users all the time ;). That
said, as a Debian user, I'd be interested in a more-or-less serious
audit of the software's security. Are there any references?

Hello there,

first of all, the upstream website it's not my website :) I'm not involved with the upstream in any way.

I've been using teampass in a production environment for some years now.
I don't know any 'security' reference at the moment. As the code is open, feel free to do such an audit (and share with us the results :P)

Cheers,

Carlos