tomb - A minimalistic commandline tool to manage encrypted volumes

Property Value
Distribution openSUSE Leap 15.0
Repository Security all
Package name tomb
Package version 2.5
Package release lp150.1.1
Package architecture noarch
Package type rpm
Installed size 110.89 KB
Download size 50.40 KB
Official Mirror
Tomb aims to be a free and open source system for easy encryption and backup of
personal files, written in code that is easy to review and links shared
GNU/Linux components.
At present, Tomb consists of a simple shell script (Zsh) using standard
filesystem tools (GNU) and the cryptographic API of the Linux kernel
(cryptsetup and LUKS). Tomb can also produce machine parsable output to
facilitate its use inside graphical applications.


Package Version Architecture Repository
tomb - - -


Name Value
/usr/bin/env -
cryptsetup -
gnupg -
pinentry -
sudo -
zsh -


Name Value
tomb = 2.5-lp150.1.1


Type URL
Binary Package tomb-2.5-lp150.1.1.noarch.rpm
Source Package tomb-2.5-lp150.1.1.src.rpm

Install Howto

  1. Add the Security repository:
    # zypper addrepo security
  2. Install tomb rpm package:
    # zypper install tomb




2018-01-04 -
- Update to version 2.5:
* Restore (from v2.3) ownership change of all files inside tombs,
to facilitate single user usage, which is now default and can
be prevented using the '-p' flag on 'open' commands.
* 'post-hooks' now renamed to 'exec-hooks' and launched on 'open'
and 'close' commands with a defined set of arguments
* Use 'findmnt' instead of parsing the output of 'mount -l',
which grants compatibility with more recent util-linux versions
* fix: the 'slam' command has better process detection and the
a new 'ps' command to list processes using tombs
* fix: support tomb hidden filenames (starting with a dot) that
lack an extension
* minor fixes to messaging and translations
- bump year in SUSE copyright
2017-10-18 -
- Packaging changes:
* Upstream URL casing has changed, fix download urls to reflect this.
* Use Makefile to install
* lint with spec-cleaner
- Update to version 2.4:
* Support for asymmetric encryption of Tomb keys using public/private
GPG key pairs.
* It is now possible to protect a Tomb key using a GPG key
(which can also be password-less for automations) as well encrypt a
Tomb key for multiple recipients (list of GPG ids).
* Fix to the 'slam' command with better detection of running programs
using 'lsof' (new optional dependency)
* Fix to 'forge' key creation to really use 512 bits long keys to really
trigger usage of AES256; correct support for opening tombs in read-only
mode; update of the Tomber python wrapper in extras.
* Documentation updates.
- Changes introduced by version 2.3:
* Fix bug occurring when using ZSh version 5.3 or higher.
* Fix inclusion of final newline in keys generated with 2.2, only affecting
third-party software.
* Removed chmod/chown of tombs when open.
* Improved parser and post-hooks to avoid usage of external binaries (grep and
* Improved security when decrypting keys.
* Fix for clean execution via sudo nopasswd.
* Updated extras/gtomb to latest stable version.
* Various documentation updates about kdf, using images as keys, deniability
and gpg-agent usage.
* New experimental port to Android platforms in extras.
2016-01-15 -
- Update to version 2.2:
* Better resizing procedure recovers from failure without starting over with
a new dig.
* Fixes for correct handling of bind-hooks mountpoints containing whitespaces,
implying a refactoring of how the mtab is parsed, along with workaround for
Debian bugs.
* Updated all strings to report MiB sizes.
* Fix to correctly show last time opened.
* Fix to EUID detection and to installed manpage permissions.
- Changes introduced by version 2.1.1:
* Added translations to Italian and Swedish. Minor documentation updates.
- Changes introduced by version 2.1.0:
* This new stable release including several bugfixes to smooth the user
experience in various situations.
* Documentation is reviewed and extended and translations are updated.
* Fixes to: mountpoint removal, language localization, gtk-2 pinentry
themeing, udisk2 compatibility (/run/media/$USER mountpoint support),
handling of key failures, kdf documentation, swish-e file contents search
and encrypted swap detection.
* Deniability is improved by allowing any filename to be used for tombs
(also without .tomb extension).
* Code has been overall cleaned up.
2015-01-28 -
- verify source signature
- add source URLs
- run spec cleaner
2015-01-14 -
- Created initial package (2.0.1)

See Also

Package Description
tomoyo-tools- Userspace tools for TOMOYO Linux 2.4.x
tpm-quote-tools-1.0.4-lp150.6.1.x86_64.rpm Trusted Platform Module (TPM) remote attestation tools
tpm-tools- Trusted Platform Module (TPM) administration tools
tpm-tools-devel- Files to use the library routines supplied with tpm-tools
tpm-tools-pkcs11- Management tools using PKCS#11 for the TPM hardware
tpm2-0-tss-2.0.1-lp150.75.2.i586.rpm Intel's TCG Software Stack access libraries for TPM 2.0 chips
tpm2-0-tss-2.0.1-lp150.75.2.x86_64.rpm Intel's TCG Software Stack access libraries for TPM 2.0 chips
tpm2-0-tss-devel-2.0.1-lp150.75.2.i586.rpm Development headers for the Intel TSS library for TPM 2.0 chips
tpm2-0-tss-devel-2.0.1-lp150.75.2.x86_64.rpm Development headers for the Intel TSS library for TPM 2.0 chips
tpm2.0-abrmd-2.0.2-lp150.44.1.x86_64.rpm Intel's TCG Software Stack Access Broker & Resource Manager for TPM 2.0 chips
tpm2.0-abrmd-devel-2.0.2-lp150.44.1.x86_64.rpm Development headers the Access Broker & Resource Manager for TPM 2.0 chips
tpm2.0-tools-3.1.2-lp150.48.1.x86_64.rpm Trusted Platform Module (TPM) 2.0 administration tools
tpmd-0.7.5-lp150.1.2.x86_64.rpm Software based Trusted Platform Module Emulator Daemon
tpmd_dev-kmp-default-0.7.5_k4.12.14_lp150.11-lp150.1.2.x86_64.rpm Software based Trusted Platform Module Emulator Library
tpmmanager-0.8.1-lp150.1.1.x86_64.rpm TPM Manager