Cobbler

Discussion in 'other software & services' started by svenfaw, Feb 8, 2017.

  1. svenfaw

    svenfaw Registered Member

    Joined:
    May 7, 2012
    Posts:
    195
    Next release 1.009.219 (out soon) will have the following changes:
    • slightly increased container capacity
    • smaller executable size
    • new color scheme
    • DEP enabled executable
    • AES256 encryption
    Are there any Wilders members using Cobbler on a regular basis by the way?
     
  2. Tarnak

    Tarnak Registered Member

    Joined:
    Feb 5, 2007
    Posts:
    4,286
    I would, if I had an example of how to use it. ;)
     
  3. gorblimey

    gorblimey Registered Member

    Joined:
    Jan 19, 2017
    Posts:
    139
    Location:
    West Oz
    Daily, v1009. It makes a perfect password keeper. I'm happy with the 32KB size, I'll never have that many passwords, I don't need Deniable Output. Some usage documentation would be nice, but I made myself a little (non-encrypted) help text. But I'm sure Cobbler has more secrets :) that I can't see.
     
  4. svenfaw

    svenfaw Registered Member

    Joined:
    May 7, 2012
    Posts:
    195
    Thanks for your feedback, and donation - assuming that was you. :)
     
  5. gorblimey

    gorblimey Registered Member

    Joined:
    Jan 19, 2017
    Posts:
    139
    Location:
    West Oz
    I bin thunking for a couple days, no enlightenment. Is the question "How do I work it?" or "What can I use it for?"

    Let me say "Sorry" here now if I've offended you, but I truly could not see what problem you are having.
     
  6. gorblimey

    gorblimey Registered Member

    Joined:
    Jan 19, 2017
    Posts:
    139
    Location:
    West Oz
    For US$20, yes it was most likely me. Something as good and simple as Cobbler, no bells or whistles to weaken the walls, that's worth 20 bucks a year. To put it in context, I never bothered paying for Eudora email client, good though it was, just used the free version. But I pay US$25/year for Gammadyne Clyton email client because I get TLS encryption for free, as well as a layout that closely resembles Eudora. And I pay Au$50/year to Fastmail, because that too has TLS encryption even on POP3. The old proverb "You get what you pay for" has a corollary: "I pay for what I get."

    All that being said, please resist the temptation to add corrosive fluff to the product. You mentioned in earlier posts how adding conveniences weakens security, so... Fort Knox has only one exit, the front door. That makes it secure.
     
  7. svenfaw

    svenfaw Registered Member

    Joined:
    May 7, 2012
    Posts:
    195

    Ah, if only more users could be like you!
    (Right now I am only getting about one donation per 2000 downloads, which is sadly not enough to be sustainable.)

    I'm not a fan of feature bloat either, so don't worry about that.
    The only major addition that I plan to implement is deniability - and only after heavy testing.

    FWIW, I also use Cobbler on a daily basis.
     
  8. Pharaohs

    Pharaohs Registered Member

    Joined:
    Jun 14, 2016
    Posts:
    3
    Location:
    USA
    Thanks for all of your interesting software - I really hope it stands the test of time. As a non-security expert (which is why I lurk here and other security sites to learn best practices), I really love the idea off all the software you're developing. I mainly logged in to address your quote above:
    - "Right now I am only getting about one donation per 2000 downloads, which is sadly not enough to be sustainable."

    If you keep creating minimalist, "bulletproof" security tools and updating your current ones, the sustainable income will come. I've seen RCC recommended on a few websites and I'm sure there will be many more. I think a big part of what's holding a lot of people back is simply *trust*. The security experts on here and elsewhere may see your software and understand that it's safe and does what it says it does -- and some of those people probably donate. The other 1999 downloads, as you mentioned above are users just like me; overwhelmed by all the information and noise out there about who and what to trust online. I believe that you need some trusted endorsements from respected/known members in the security space. Put any quotes or reviews with links to the source on your website and I assure you those donations will improve. As it stands right now, your website just says "big things coming soon" which create doubt for the *now*.

    As a Lastpass premium member, I still really wanna download this "Cobbler" software but I need to be told by someone smarter than me to do it! :D

    Good luck man, I've gotcha bookmarked. When the time comes, I'll definitely spread the word.
     
  9. gorblimey

    gorblimey Registered Member

    Joined:
    Jan 19, 2017
    Posts:
    139
    Location:
    West Oz
    G'day Pharaohs - Being naturally humble and all, I'm reluctant to claim "smarter than you" :cool:

    BUT... I downloaded Cobbler the moment I saw it on this site, and it became my password vault about 20 minutes later.

    Seriously, what on earth is stopping you from at least downloading and trying Cobbler? "Don't wait to be told, you need P*****live Gold!", aka "Just do it!"
     
  10. svenfaw

    svenfaw Registered Member

    Joined:
    May 7, 2012
    Posts:
    195
    Version 1.09.219 has been released.
    • switched to a lightweight lexer library, leading to a much smaller executable size
    • white color scheme
    • new shortcuts:
      Ctrl+Shift+H generates a batch of 30 strong passwords
      Ctrl+Shift+3 copies the third field of the current line to the clipboard, and also minimizes Cobbler (useful for quickly pasting a password on a website)
    Just for the record - there are currently no known critical vulnerabilities in Cobbler (largely due to the lean codebase).
     
    Last edited: Jun 27, 2017
  11. mood

    mood Registered Member

    Joined:
    Oct 27, 2012
    Posts:
    2,412
    Very nice, thanks :thumb:
    And yes, it is much smaller, 20% filesize in comparison to the previous version :)
     
  12. svenfaw

    svenfaw Registered Member

    Joined:
    May 7, 2012
    Posts:
    195
    Version 1.09.223 has been released.
    • Fix for a rare crash-on-exit bug (under Win 8.1 x86)
    • Autofocus on search box when opening an existing file

    SHA-256: 64d13297a8c810079b5b88ac5f3ad924cb148fe10f2afd152c90d97a6f55268c
     
  13. treehouse786

    treehouse786 Registered Member

    Joined:
    Jun 6, 2010
    Posts:
    1,395
    Location:
    Lancashire
  14. svenfaw

    svenfaw Registered Member

    Joined:
    May 7, 2012
    Posts:
    195
    Even though it is a nice trick, this type of feature sadly causes far too many false detections by so-called "ML" / "Smart" / "Next Generation" antivirus engines (yeah, right...)
     
  15. treehouse786

    treehouse786 Registered Member

    Joined:
    Jun 6, 2010
    Posts:
    1,395
    Location:
    Lancashire
    0 detection on virustotal out of 62 for locknote