Getting acquired by publicly listed LogMeIn was a red flag, but we are all lazy when something works OK. (See the Google thread, though finally made my move there as well)
>Considered
Bitwarden
KeePass
LessPass / masterpassword (declined, nice concept but other issues)
Anything else? What is the best way to keep KeePass secured and sync'ed across machines / devices?
Other urls found in this thread:
passwordstore.org
github.com
twitter.com
>Getting acquired by publicly listed LogMeIn was a red flag
Why was that a read flag? Didn't that happen a few years ago?
The best reason to dump LastPass is because they haven't bothered with significant improvements in years.
Stop storing your passwords in the cloud. Use keepass. If you have to upload it to the cloud encrypt the database file.
You can use whatever to keep you keepass files synced since they're encrypted
Yes, they (literally) sold out in 2015.
So KeePass is the best option I suppose?
>Stop storing your passwords in the cloud. Use keepass. If you have to upload it to the cloud encrypt the database file.
LastPass already does this dumbass. It encrypts/decrypts locally.
Enjoy having your passwords disappear when lastpass goes out of business. Dumbass.
use keepass, you can also use KeeWeb, it features system-wide auto-type both on linux and winders, no need for extension
Keeweb is basically a cloud-oriented KeePass client, with an web-app and a ""desktop"" app built with electron
That's the problem, so many options for KeePass. Which one to use? The official one is focused on Windows? KeePassXC + sync?
Are you people that use digital password managers using them on network-connected machines?
I use pen and paper.
This, except don't upload anything to "the cloud", there are great mobile apps.
I use keeweb, it works on both linux and windows in the exact same way, it supports synchronization with most popular cloud services, it's auto-type is pretty good, it looks good and is actively developed.
If you're not an autistic that rages whenever he lays eyes on an electron software, I would recommend keeweb.
There's no problem with uploading to the cloud, since keepass encryption is phenomenal
Chrome has this shit built in...
>implying
>What is LastPass pocket.
You can completely work offline with Lastpass lmao
Enpass
Why is it any different than the other options?
because first of all, the native client isn't cancer. It's a beautiful qt5 client which works on win, linux as well as mac. secondly you can choose whether you want to be completely offline, sync with enpass or sync wiht one of the big cloud hosters (integrated)
Thanks user, and why should I trust these fags more than the other providers?
because you can turn off online syncrhonization? It's turned off by default. If you want to sync with Enpass online, you'll have to create an account.
Did they tell you that and then do a pink promise?
Prove otherwise.
Protip: you can't.
>Proprietary password manager
No, thanks.
lmfao.. the enpass database is a regularly encrypted SQL database, which basically is open source. Only the frontend is propietary.
KeepassXC + syncthing
ez and cross platform
>only the frontend is potentially leaking your passwords
that makes it so much better.
LMFAO the truth is, you're a virgin weebfaggot who cries every day about never ever having kissed, let alone fucked a girl. In order to compensate being a miserable ugly failure, you fell for the freetard meme. The funny thing is, after you've died, you won't have gained a single thing from using this freetard shit you call KeePass or in fact any other free software.
God bless proprietary software.
so i guess you have no argument left then. i rest my case.
I just gave you an argument. It's an ecrypted SQL database. You claim the GUI leaks data but after having checked it with Wireshark, I can't find anything that indicates such a behaviour. Lmfao you have no proof except for your own paranoia you fucking loli pedo.
I stopped reading your other post after the first insult because I didn't expect any useful content anymore. Obviously, if it was leaking your passwords, it wouldn't be so obvious. It might through some hoops save passwords or the key to your database somewhere else. But only if certain criteria are met. Or it might have a backdoor. Or anything, really. You can never know for sure. Why would you use something like that if better alternatives are readily available.
Are you using Keepass or KeepassX?
Keepass, don't trust anyone but you.
funny, because Keepass requires .NET which is not only proprietaty but from Microsoft. You freefags are so fucking funny, you are worse than cancer.
My strategy is storing a Keepass database on my Pi encrypted with a key and a long password. the key is on my pc and the long password is on a yubikey. seems like a relatively secure solution, does Sup Forums have any suggestions or reason why this is bad? genuinely curious.
>but we are all lazy when something works OK
maybe you are, but that acquisition was what made me move everything over to keepass. then subsequently moved over to pass. not missing lastpass whatsoever 2bh, like self-hosting my shit too.
Why is everybody so hung up about them being acquired?
>before: for-profit company
>after: for-profit owned by another company
I don't see how this would change anything, but the fact is LastPass was shit way before they were acquired. The only reason I stick with them is because they have the best multi-platform support I can find.
what is burden of proof?
>injects legalese
>doesn't understand what it means
good job
Store your passwords in a file in your encrypted drive like a normal person or use something like PBKDF2 to derive a key from your master password.
>like a normal person
lmfao. normal people arent autistic
Anyone interested in getting together and coding our own alternative? I'm down if we use discord to communicate.
Invisible ink on a used piece of paper, stick the passwords in a diagram or some shit. Failing that, write it down normally and store until you've memorized it, then burn it.
But what if the drive fails, gets damaged or the data gets corrupted? You'd be totally fucked.
Use RAID and have backups?
You can also upload your encrypted file system to the cloud.
isn't that the windows version though? linux keepass2 is open and free
I'll get started on the logo!
>Keepass requires .NET
Only the 2.x version. You can still download the older 1.3.x version, AKA KeePass Classic, which doesn't use .NET.
>what is keepassx
>what is keepassxc
There is even a shitty electron keepass.
>Not tattooing your passwords on the wall of your asscrack.
Rip OP
Just made this shitty little deterministic script in bash
#!/bin/bash
#change the salt, idiot.
salt=zGNn4KnVVzHc6t3xzBICERKtjSJfFPETxxR2atpriimMzrUV0a7wSR51ByLI4Atu
read -p "Key: " i
rawkey=$(echo -n $i$salt | openssl dgst -sha512 -binary | xxd -ps -u -c2 | while read e; do echo $e | xxd -ps -r | openssl dgst -sha512 -binary; done | openssl aes-256-cbc -nosalt -k $i$salt | tr -cd [:graph:])
upr=$(echo -n $rawkey | tr -cd [:upper:] | head -c4)
low=$(echo -n $rawkey | tr -cd [:lower:] | head -c4)
spc=$(echo -n $rawkey | tr -d [:alnum:] | head -c4)
num=$(echo -n $rawkey | tr -cd [:digit:] | head -c4)
echo -n $upr$low$spc$num | fold -w1 | shuf --random-source=
this
>pen and paper
>have to either take it with you everywhere you go
>or cannot login to anywhere if not at home
>prone to getting lost or stolen either way
>we are all lazy when something works okay
Speak for yourself faggot. Anyway I recommend password store. It is basically just a script that stores your passwords in encrypted gpg files. Plus there are plenty of front ends available for it on all platforms. gpg/pgp isn't going anywhere so there's no worry about support being dropped.