ctrlc.hu sphinx password server
Use this QR code
to setup your client
to use this server

Welcome to the ctrlc.hu SPHINX password server

sphinx: a password Store that Perfectly Hides from Itself (No Xaggeration)

WTF: SPHINX???

SPHINX is a cryptographic password storage as described in https://eprint.iacr.org/2015/1099.

You can also watch a video about SPHINX by the 2018 Levchin Prize winner Hugo Krawczyk on the Real World Crypto conference 2017.

Why should i use this?

The nice thing is, you don't have to trust me with this protocol. This server could be operated by criminals, politicians or your adversarial intelligence service. And yet it would be totally ok.

NEWS

2021-06-29 Due to an backwards-incompatible upgrade to v1.0-rc1 of the server we moved the pre-v1.0 server to port 8443. If you need to access your passwords in this older version please update your sphinx configuration to point to the new port. The new version of our server is running at the usual 443 port. To use this you need at least v1.0-rc5 of pwdsphinx.

How to use it

For the most reliable and secure experience use pwdsphinx from the command-line. pwdsphinx is needed anyway also for all the other frontends - except androsphinx.

For chrom* derivates get the plugin from github/stef/websphinx-chrom and follow the instructions.

For firefox derivates get the plugin from the mozilla addons store and follow the instructions.

For android grab androsphinx v0.5.2 on your phone.

Build yourself

Note the following packages need to be built by yourself, we'll publish binary packages soon™

For windows just get the installer and you need to install the webextension in your web-browser following these instructions.

Apple products are not supported (only on the cmd line, via the python-based pwdsphinx), but anyone is welcome implement a client for them - it's not that difficult.

Configuration

Put this into your ~/.sphinxrc

[client]
address = pwd.ctrlc.hu
port = 443
timeout = 3
rwd_keys = True

[websphinx]
pinentry=/usr/bin/pinentry-gtk-2

Alternatively if you want to reach this service via tor use this - (altough you have to handle resolution and routing to tor yourself):

[client]
address = dnbarwg4uxdfjemfc6jw2dfplixqwt67fpergmurfi2cmo7tz44jckqd.onion
port = 443
timeout = 3
rwd_keys = True

[websphinx]
pinentry=/usr/bin/pinentry-gtk-2