About SherPass

SherPass is a program to manage passwords, both for web sites and SSH access.

It uses the GNU Privacy Guard to PGP-encrypt login/password entries. By encrypting an entry with possibly multiple persons' public keys, several people will be able to obtain access to the password entry, each using his own private key. This allows password information for hosts or websites to be shared among several people, without needing a single master key.

To manage passwords, download the standalone program for your operating system. To be able to use passwords in web pages more easily, you can use

The manual explains how both the standalone program and the bookmarklet/extension can be used.


Installable packages for various platforms:

The standalone program was written in Python, using several extra software packages listed below. The source code of the Python application, as well as this web site can be found here:

Copyright & disclaimer

Everything is licensed under the GPLv3, the short version of which is:

This program is free software: you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation, either version 3 of the License, or
(at your option) any later version.

This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
GNU General Public License for more details.

You should have received a copy of the GNU General Public License
along with this program.  If not, see <http://www.gnu.org/licenses/>.

The full version can be found at http://www.gnu.org/licenses/gpl-3.0.txt

Software used for the standalone application

Software included in the installers

Software used for web page


The main SherPass program works with two directories:

  1. A directory with PGP public keys which can be used to encrypt login/password entries.
  2. A directory in which each file is an login/password entry that has been encrypted with one or more public keys from the other directory. The people who have a matching private key (and the corresponding passphrase) can decrypt these entries and view the login/password information.

By using shared directories for this (e.g. using a shared filesystem like NFS, or something like Dropbox), this makes a shared password system possible. In this system each person can still have his own private key and passphrase, no globally known password or key is necessary.


Updating manual for v2 series

The manual for the v1 series may still be useful


You can find contact information on my Google+ page.