this post was submitted on 11 Feb 2025
42 points (100.0% liked)

Selfhosted

42057 readers
764 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
HybridSarcasm@lemmy.world
HybridSarcasm@lemmy.hybridsarcasm.xyz
42
Digital management post-life (lemmy.nowsci.com)
submitted 14 hours ago by fmstrat@lemmy.nowsci.com to c/selfhosted@lemmy.world
19 comments fedilink hide all child comments
 

Hi all,

Working through some things like a Will (I am fine, just normal life planning), and debating on methods for digital management when I do die.

I run a lot of self-hosted services for family and friends, all on secured servers with ZFS and on/off site backups. Key ingredient is Vaultwarden for password management.

I'd like to put something in place so that encryption keys, some docs, and key passwords are released to a tech savvy friend. Anyone know of existing solutions for this?

Requirements of:

  • Not providing keys to a third-party beforehand
  • Not forgeable to open
  • If possible, no "weekly press a button"

I'm thinking some kind of key pair where my friend has the private key and the public key is provided to a family member, and when activated a timer starts where I could cancel the release.

you are viewing a single comment's thread
view the rest of the comments
[–] hendrik@palaver.p3x.de 16 points 13 hours ago* (last edited 13 hours ago) (10 children)

Well, I always dreamt about encrypting my master keys to all my digital heritage with some threshold scheme encryption like Shamir's secret sharing. I believe there is some Linux tool available: http://point-at-infinity.org/ssss/

That way N out of M of my friends would have to gather after my passing, combine the puzzle pieces and be granted with access to my stuff.

There are easier ways, though. You can just write down a password and include it with your last will, seal it and have a notary take care of it. I'd create a seperate administrator account/password for that.

You could set up two factor authentification and give them one factor now, and have the other factor stored with your things so they can collect it after your passing. Doesn't need to be complicated, create a password with 30 characters, split it in the middle and you have two factors.

There are online services for these kind of things. Or you can run some dead man switch yourself. I'm not sure what kinds of projects someone would use for that. Taking care of a dead man switch would be annoying for me.

[–] AbidanYre@lemmy.world 6 points 11 hours ago (4 children)

Possibly dead, but a cool project none the less.

https://github.com/jesseduffield/horcrux

[–] ohshit604@sh.itjust.works 3 points 9 hours ago (2 children)

Last release was over 5 years ago and judging by the issues not receiving responses best to assume it’s deprecated.

Cool project it seemed.

[–] AbidanYre@lemmy.world 1 points 3 minutes ago

Yeah, I was looking at the most recent commit being two years ago. Hadn't checked out the issues.

[–] Andres4NY@social.ridetrans.it 4 points 9 hours ago

@ohshit604 @AbidanYre Nah, they are still doing releases, but they're hidden. You have to combine the past few releases to unlock the url for the latest release.

[I'm joking, of course.]

load more comments (1 replies)
load more comments (6 replies)