1

We have a bunch of files that contain sensitive information, that need to be accessed by several teams, but need to be unreadable to everyone else. Currently, each team member needs to generate their own GPG key pair and share their public key with the team.

Then whoever has access to the files will add the new person's key to the relevant files. This is a fiddly and time-consuming process. Same when a key needs to be removed from files (say, the person has left the company).

This could be automated, but I do not want to reinvent the wheel. Are there any tools that automate the process I've described?

Florin Andrei
  • 1,148
  • 1
  • 11
  • 18
  • 1
    You could write scripts for that, I suppose, but I've never heard of anyone doing this. Why not use encrypted storage with proper access controls? – Michael Hampton Jan 16 '19 at 23:17
  • Writing scripts is definitely doable, I just didn't want to replicate existing software, if any. Encrypted storage sounds like a good idea, I'll look into it, thanks! – Florin Andrei Jan 16 '19 at 23:50
  • 1
    [pass, "the standard unix password manager"](https://www.passwordstore.org/) is a program to encrypt (and whenever necessary reencrypt) multiple files with multiple GPG keys. – anx Jan 11 '20 at 15:32

0 Answers0