![]() KeePassium (for iOS, I'm not an iOS user but it's the one I've seen mentioned the most).KeePassDX, KeePass2Android, KeePassDroid, and KeepassA (for Android).KeePassXC (which is cross-platform, for Linux, macOS and Windows).The most popular KeePass compatible clients: Everything is valid (I at least synchronize my data outside the cloud with Syncthing between my devices). It's not necessary to use the Internet, that's totally optional (and at the discretion of each user) to host copies of your data in the cloud or on servers. It's an open source, community-developed program (and a number of compatible clients). You yourself choose where to save your data and which applications you are using. Well, perhaps the most interesting thing about KeePass is that it's a "zero knowledge" application, no one else manages your data but you, and you yourself are responsible for it. It's best to have backups of keyfiles and database files locally accessible (not online) Maybe a VeraCrypt encrypted folder - so just one password to remember if SHTF However it's important to go through the process of what happens if you are compromised. Obviously not expecting an answer as Opsec is important. How many passwords are you remembering now. Oh wait you need that email access, unless you have a third email account for the phone reset that is. What if you loose email access? - can you reset email password by phone maybe - so everything comes down to your phone sim card.that you break accidentality when putting a microsd in the phone.īut not to worry as this phone account is registered you can order a new sim. So you are now needing to remember 4 passwords hopefully very long for good entropy and randomly generated etc. ![]() What is the security for the cloud service? ie do you have an account with them, which would mean a email for reset.Īre they both different emails (with different passwords to manage) you need to "remember" both cloud service passwords? It has my vote - the only other option I'd consider moving to is self hosted Bitwarden, but it's more effort to run compared to looking after 1 single file You can do private syncing with Syncthing or you can keep a copy in your Google Drive, Dropbox, etc If you have an Android phone then I highly recommend KeePass2Android as it's also open source and utilises the system auto fill, which makes logging into stuff on your phone really easyĪs for syncing your KeePass DB across multiple devices, there's lots of options ![]() ![]() You maintain full control of your database so you know exactly where it is and you have full say on where it goes.You can add entropy to the database to help slow brute force attacks down to become almost impossible.It's been audited many times without any glaring issues found.It's fully open source so it can be audited.I'd advise against using this feature because it defeats the purpose of MFA KeePassXC also has support for TOTP so it can generate one time passcodes for you My other favourite KeePass feature is the auto type sequences that you can program, so if a site requires a string here, then a tab, then the password, then another tab then enter, you can make KeePass do that for you If someone managed to get my KeePass password, they'd still have to get my KeePass database file before they could do anything with itĬompare that to LastPass, hosted Bitwarden or 1Password where all of them are online, so if an attacker got your email and password, they're in KeePass is truly offline so there's no online web facing front end for an attacker to use Personal bias: I've been using KeePass since about 2015 KeePassXC is a cross platform fork of KeePass, but for all intents and purposes, they're extremely similar ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |