|
#1
06-16-2011, 05:41 PM
|
|||
|
|||
|
SecureCRT wishlist: Secure configurations and portability across OSes
Just wanted to chime in to say thanks and make a couple of wishlist requests.
First, I'd love a feature that lets you enable a "master password". Upon enabling this setting, you'd be asked to enter a strong master password. Ideally, all of your sessions, configuration, keys (both public and private) would be encrypted with this password, and then when you start SecureCRT, you would be prompted for the password before you can access anything but maybe a "quick connect" dialog. I really like being able to save my passwords, but I don't like the idea of anyone being able to walk up to my computer and access all my servers! This also ties into the next part; packaging up the configuration. I regularly use multiple computers in a variety of locations (home, laptop, office, datacenter, etc). My SecureCRT sessions list has a massive number of entries and over the last 10 years that I've been using SCT, I've managed to configure everything just the way I like it. Trying to synchronize across machines (and now across operating systems as well!) is quite a nuisance. Just the other day my main workstation died, and I realized I didn't have the IP addresses of a couple of my servers anywhere but in my SCT configuration! In an ideal world, you'd be able to "Export Configuration" which would let you save a single encrypted (using a master password) file which you could then synchronize to a server/usb stick/whatever and then pop over to another computer, import the file, type in the password and magically all your settings, sessions, keys, etc are there. This would be so great, and would really save me a large amount of time spent reconfiguring and copying settings around for SecureCRT. The only issues I can think of off the top of my head would possibly be keymap conflicts, like wanting different keymaps based on if you are in windows/linux/mac os, otherwise this would be real handy for me. Anyone else think so? 
|
|
#2
06-17-2011, 07:44 AM
|
|||
|
|||
|
Hi maxg,
Thanks for the suggestions. I have created feature requests in our SecureCRT development database to add the ability to use a master password to encrypt the configuration folder, the ability to export the configuration folder with an option to encrypt it using a password. Should either feature be implemented, we will post to this thread. If you would like to be notified directly, please complete and submit the form at the following location: Submit Feature Request
|
|
#4
06-20-2011, 08:05 AM
|
|||
|
|||
|
Hi hades92,
Thanks for the additional request. I have added your post to the feature request. Should a future release of SecureCRT have the ability to use a master password to protect the application or the configuration, we will post here.
|
|
#5
03-28-2012, 07:04 AM
|
|||
|
|||
|
I find Master Password a useful feature too. Master Password should do at least this things:
– passwords stored in session config files should be encrypted using Master Password, – all used private keys in all sessions should be first decrypted in interactive mode, and next encrypted using Master Password. – Master Password should be optionally saved in resident memory in Activator, denied for swapping out. So, user will have to enter Master Password only once if he has Activator running, even if he close and reopen SecureCRT. No other passwords will be asked, because session passwords and keys will be possible to decrypt using Master Password. And if files will be compromised, it will be not possible to use session passwords or private keys. Currently there is a security issue: if session files with saved passwords are compromised, third party can use them. Master Password will solve this too.
|
|
#6
03-28-2012, 07:23 AM
|
|||
|
|||
|
Hi Vanav,
Thanks for the request and reasons for the request. I have added your post to our SecureCRT enhancement database to add a master password capability. We will post to this thread if this feature is added in the future.
|
|
#7
04-02-2012, 05:49 AM
|
|||
|
|||
|
Quote:
|
|
#8
05-21-2013, 06:53 AM
|
|||
|
|||
|
Quote:
Of course I lock my computer, but that doesn't really provide much beyond security for people who have *physical* access to my computer. Encrypting 100% of the encryption, SSH keys, etc for SecureCRT behind a master password would add a major layer of security, it could also be done at the same time as making the configuration more portable/compatible across operating systems.
|
|
#9
05-21-2013, 07:04 AM
|
|||
|
|||
|
SecureCRT Wishlist
Also to make an update about portability:
The format (ini) for a lot of the configuration is portable, so copying it between computers/OSes is possible and I've been doing it that way, but since there are quite a few external file paths (key maps, ssh keys, etc), lots of stuff breaks between OSes. Ideally, SecureCRT will move to a system where 100% of the required data can be stored entirely in configuration (a built in key map manager and ssh key manager would be amazing) which is portable (either exportable to a single-file like SQLite or can be used from a service like dropbox by multiple clients, or both) and can be effectively secured (encrypted). Now that it's available on almost every major operating system, it really should be a priority. To this day I have issues where I edit settings in one terminal and then somehow they manage to get reverted or overwritten by another (I have auto-save settings on, but why is this even an option?! shouldn't settings save as soon as you hit apply/okay and be pushed across terminals?). Anyway, here's hoping I visit in a year and find some updates!
|
|
#10
05-21-2013, 08:25 AM
|
|||
|
|||
|
Hi maxg,
Thanks for the update. I have created two more feature request. Should we make the configuration folder platform agnostic or add the ability to use a database for the configuration folder, we will post to this forum thread. If you would like to be notified directly, please complete and submit the form at the following location: Submit Feature Request
|
|
#11
05-31-2013, 12:05 AM
|
|||
|
|||
|
I just want to chime in and say I would also find this extremely useful, If all of the configurations were platform independent and easily exportable/sync-able.
I have recently tried to use dropbox as an option to sync in the config folder across platforms and machines, but as mentioned, lots of things can break. +1 to a nice unified, platform independent config file.
|
|
#13
06-03-2013, 04:07 PM
|
|||
|
|||
|
Hi sprink and tvaldes,
I have +1'ed (x 2) the noted feature request. 
__________________
Thanks, --Brenda VanDyke Software Technical Support support@vandyke.com (505) 332-5730
|
|
#15
09-30-2013, 07:18 AM
|
|||
|
|||
|
Noted Adam84. Thanks for the feedback.
|
 |
| Thread Tools | |
| Display Modes | |
|
|
Linear Mode
