1. 2

Command line scrypt utility is especially handy. I now use it to encrypt sensitive files on my system. Previously I was using openssl bf -a -in file > file.bf to encrypt (with blowfish) and openssl bf -d -a -in file to decrypt. It was simple and worked, but scrypt is orders of magnitude more secure and I trust Colin (author of Tarsnap).

It’s just a pkg_add scrypt away on an OpenBSD machine.