And the best part is there are solutions already that do this: https://keepass.info/ Does it work on Android or iOS? - Source: Hacker News / 5 months ago
The key difference here being that this is two way hashing so passwords can be decrypted. In reality, there are a lot of attack vectors like MITM, event logging or sometimes straight up storing data in plaintext. Through these hackers can generally get passwords of all users of these services. So, why don't people use local password managers? Just a txt file encrypted with "master password" should be pretty... - Source: Hacker News / 5 months ago
When you're at a point where you're relying on a display name to make security-critical decisions, you've already lost. Character substitutions like ķeepass or ƙeepass or keypass are at least possible to spot if you know the name of the product, but not the full URL. But there are many ways to create lookalike domains that don't change the product name: https://keepass.org https://keepass.net https://keepass.info... - Source: Hacker News / 6 months ago
> People love to hate on passwords but the reality is that for many circumstances (threat models) they are the best compromise. You can make them more than strong enough (take 32+ bytes out of /dev/random and encode however you like, nobody will ever brute force that in this universe) and various passwords managers solve the problem of re-use (never reuse a password). > And it comes with the benefit that you... - Source: Hacker News / 7 months ago
If you have used this combo at many sites (which is of course not recommended) then download one of the available free Password Managers like Keepass, Bitwarden, Lastpass or any others you can find with a Google Search. Source: 7 months ago
I also tried out KeePass for a little bit but prefer the BitWarden apps. The key thing here is don't store your passwords in the cloud as they are massive target for hackers. - Source: dev.to / 7 months ago
There are various Keepass add-ons, but I prefer the standalone version. Source: 10 months ago
If though you can't stand the idea of your password vault on a 3rd party server then you can use an offline password manager like KeePass. Of course, you have to take responsibility for making and storing backups of your vault in case something happens to your device. Fortunately, Syncthing can make this pretty trivial. Source: 11 months ago
If you can't stomach the thought of your password vault stored on a 3rd party server then I recommend KeePass which is a free open-source offline password manager. The key here is that you should back up the database. Perhaps putting a copy of it on your laptop/PC, your phone, and USB Key (probably 2, one you keep local and update periodically to swap with a second stored in a safety deposit box or trusted... Source: 11 months ago
Why's that? If the issue is that you don't want to trust anyone else with your passwords, you can use an offline password manager (e.g. KeePass). Then all your passwords are only in one encrypted file, and you have full control over who has access to it. Source: 11 months ago
Are you on a company computer? Your admin has probably blocked the password saving feature. If that's the case, you can use KeePass and configure auto-type to save you some time, but then you either need to type out the master password, or keep the vault unlocked in your tray (which is potentially another security concern). Source: 11 months ago
For the paranoid, there's always KeePass + cloud storage, which is also free. It's what I use. I tend to use KeePassXC, a cross-platform KeePass-compatible application that works on Linux, Mac, and Windows, and I use Dropbox free for my cloud storage, since it actually has a Linux client that works, no hassles, right out of the box. I use KeePassium on my iPhone, and there are plenty of Android KeePass-compatible... Source: almost 1 year ago
But if it is what I think it is, it's probably gone. My advice, use a password manager and save everything on there and upload backups to google drive or dropbox. I would recommend KeePass. Source: about 1 year ago
KeePass and other managers based on it (some are free, possible offline or cloud, open-source). Source: about 1 year ago
If you're at all considering it, I recommend downloading the version 1.xx installer and running it. Make up some fake passwords for fake websites, test it out, kick the tires. DO make sure you download it from the official site, though. Source: about 1 year ago
I've been an avid user of a password safe (KeePass) for about 18 years. I swear by it. Source: about 1 year ago
If nothing else already suggested works for you, then export your BW data to a csv file and then import into KeePass2. KP has a built-in find duplicate password function. It can also be used a secondary local backup in addition to the cloud. More here: https://keepass.info/. Source: about 1 year ago
KeePass basically set the standard for offline password management (ie. Not dependent on any online service). Source: about 1 year ago
To best protect yourself, it could be worth using a password manager to randomly generate and store passwords for your accounts, I use KeePass which is free and works well, there are similar apps for mobile too (Strongbox on iPhone is what I use) for if I need to access accounts while away from my PC. Source: about 1 year ago
Definitely time to think about setting up a password manager & locking stuff down. KeePass is really straightforward to use & will generate secure passwords for you so you only ever need to remember one password: https://keepass.info/. Source: about 1 year ago
Additionally regarding the password security: - Enable 2 Factor Authentication - Use a non cloud based password manager. A good, free and tested solution is KeePass. https://keepass.info/. Source: about 1 year ago
Do you know an article comparing KeePass to other products?
Suggest a link to a post with product alternatives.
This is an informative page about KeePass. You can review and discuss the product here. The primary details have not been verified within the last quarter, and they might be outdated. If you think we are missing something, please use the means on this page to comment or suggest changes. All reviews and comments are highly encouranged and appreciated as they help everyone in the community to make an informed choice. Please always be kind and objective when evaluating a product and sharing your opinion.