Blake Perdue - Website & app reviews, and technology & startup commentary

App Review: KeePass

September 19th, 2008 in Reviews, Web/Tech

Many people use Firefox to remember passwords to the websites they visit, thinking their passwords are safe from prying eyes. But this is not the case. Firefox stores passwords in a very insecure manner, allowing anyone with access to your computer to easily look them up. Enter KeePass, an open-source, cross-platform password management tool.

I tested out KeePassX on my Mac to see if it would give me a more secure way to store my passwords. KeePass uses AES or Twofish encryption to secure a master database of all your passwords. You have one password you need to remember to open the database and access all your passwords. Keypass generates very secure passwords (HjVgF4P3si0et6KnDLxZrxu5n) of various lengths with or without special characters for you to use on websites.

What I like: KeePass eliminates two vulnerabilities: KeePass’ generated passwords make it virtually impossible for people to guess your password and it securely encrypts your passwords should someone ever gain access to your computer.

What I don’t like: Unlike the Windows version, KeePassX doesn’t have an auto-fill hotkey. That means every time you want to log into a site, you have to have KeePass open, switch to KeePass, copy the password, switch back to your browser, and paste the password. This is way too much work.

Due to this lacking feature, I won’t be using KeePass for my regular passwords. However, for certain passwords like my bank account I would consider using KeePass. The down side is that I have to have KeePass to retrieve my password. If I’m on another computer, I won’t be able to login.

Bottom line is I’m still looking for a strong password protection tool. What do you use to secure your passwords?

Comments

I keep it all external in a notebook, which may actually not be all that secure. But having kept written down makes me feel more comfortable. I take my passwords with me wherever I go and I don’t have to worry about my computer being stolen or my cloud service going down or out of business.

Shuan on September 19th, 2008

Interesting idea, i think I would consider using something for my password.

Right now I just use Firefox to keep up with my password. I guess I should use something more secure and also use more than one password for everything like I do now.

Oh well, I just never prepare for the worst. Like if someone stole my computer.

Timothy Richards on September 20th, 2008

shuan, i do the same as you. i just write them down on sitcky notes and keep them in my filing cabinet. i doubt anyone will break into my house for my passwords, but if they did i would immediately change them.

Samantha on September 20th, 2008

Comment

clint on September 24th, 2008

I’m a big fan of both SplashID and 1Password on the Mac and the iPhone. Both have features I like, so I wind up using both of them… but if I were coming in fresh, I’d probably use 1Password exclusively. They even have a way to keep multiple machines synchronized, although I haven’t needed that yet.

Stephen Fleming on November 8th, 2008

About

Photo of Blake Perdue

My name is Blake Perdue and this is my blog. I am a technology enthusiast with a passion for the web, startups and cool products. I am currently attending business school and working at a startup incubator.