Blake Perdue - Website & app reviews, and technology & startup commentary
App Review: KeePass
Many people use Firefox to remember passwords to the websites they visit, thinking their passwords are safe from prying eyes. But this is not the case. Firefox stores passwords in a very insecure manner, allowing anyone with access to your computer to easily look them up. Enter KeePass, an open-source, cross-platform password management tool.
I tested out KeePassX on my Mac to see if it would give me a more secure way to store my passwords. KeePass uses AES or Twofish encryption to secure a master database of all your passwords. You have one password you need to remember to open the database and access all your passwords. Keypass generates very secure passwords (HjVgF4P3si0et6KnDLxZrxu5n) of various lengths with or without special characters for you to use on websites.
What I like: KeePass eliminates two vulnerabilities: KeePass’ generated passwords make it virtually impossible for people to guess your password and it securely encrypts your passwords should someone ever gain access to your computer.
What I don’t like: Unlike the Windows version, KeePassX doesn’t have an auto-fill hotkey. That means every time you want to log into a site, you have to have KeePass open, switch to KeePass, copy the password, switch back to your browser, and paste the password. This is way too much work.
Due to this lacking feature, I won’t be using KeePass for my regular passwords. However, for certain passwords like my bank account I would consider using KeePass. The down side is that I have to have KeePass to retrieve my password. If I’m on another computer, I won’t be able to login.
Bottom line is I’m still looking for a strong password protection tool. What do you use to secure your passwords?
Comments
Interesting idea, i think I would consider using something for my password.
Right now I just use Firefox to keep up with my password. I guess I should use something more secure and also use more than one password for everything like I do now.
Oh well, I just never prepare for the worst. Like if someone stole my computer.
shuan, i do the same as you. i just write them down on sitcky notes and keep them in my filing cabinet. i doubt anyone will break into my house for my passwords, but if they did i would immediately change them.
Comment
I’m a big fan of both SplashID and 1Password on the Mac and the iPhone. Both have features I like, so I wind up using both of them… but if I were coming in fresh, I’d probably use 1Password exclusively. They even have a way to keep multiple machines synchronized, although I haven’t needed that yet.
the .kdb file should be compatible across all versions of keepass and keepassX. atleast for windows, you do have a portable keepass option. your idea of keeping only very very important info like bank passwords makes more sense.
I use KeePass (windows) and KeePassX (OSX) and keep my kdb file in my dropbox. My database is kept safe and encrypted and can be accessed from anywhere – work, home, or on someone else’s computer. My current complaint is the auto-fill missing on KeepPassX.
KeePass permits you to keep encrypted comments, security question answers and other related info. It is a wonderfully useful and secure application. I keep a copy of my kdb file as an attachment in a gmail message – I can get to it from any connected computer as needed.
Doesn’t MAC support simple macros to paste data from one app to another? That’s all that’s going on in the Windows version.
Post a comment
About
Feed Subscribe to this blog
Subscribe to this blogFlickr
Featured
• Website Review: Weather.com
• App Reviews: Task Management
• App Review: KeyPass
• The Controversial Hijack
I keep it all external in a notebook, which may actually not be all that secure. But having kept written down makes me feel more comfortable. I take my passwords with me wherever I go and I don’t have to worry about my computer being stolen or my cloud service going down or out of business.