Keeweb with keepass3/23/2023 The way it's implemented right now is ridiculous. Either make it usable, or yank it out altogether. KeeWeb is an elegant, cross-platform piece of software that is designed from the ground up to offer a secure environment for keeping important information and credentials safe, as well as the. How difficult can this be to correct, after all those years ?Īnd tags. Small, non-enlargeable windows are one of my pet hates relative to Kee Pass. Is the suspicious plug-in you point to listed on Kee Pass website ? I wouldn't think so.Īnd yes, the interface is outdated, and does not follow rules of usability even within the old framework it uses (and which is all right, as long as you apply it in a correct way). Plug-ins make me nervous as well for security reasons, but I don't think there have been real problems up to now. Similarly, it should not be as easy to apply a keyfile, a gimmick which seems to add security, but is not really necessary, and can easily lock you out of your database. I use DB Backup (and other means), but you should not need a plug-in to do that. It definitely should have a backup feature embedded. It could be as powerful, and more secure by adding some idiot-proofing. Most people don't use password managers at all, so one needs to assume that users knowledgeable enough to download Kee Pass would be aware that backup is a thing.īut I agree, Kee Pass has a whiff of geekiness which is useless. You don't get this either when you buy a computer from the store. There was no warning or multiple messages telling me to keep a backup of my database to avoid losing my data. Keepass also lacks a few safeguards for beginners. The only downside is that the community isn't big enough to support the plugin system properly and the interface may be daunting to some people. To conclude, I think that keepass is the best password manager, with very few flaws. Secure desktop isn't enabled by default and that's not cool. There was no warning or multiple messages telling me to keep a backup of my database to avoid losing my data (be it data corruption, flood, fire, theft or other causes). Some people, may even be willing to go to paid competitors to have this safety and peace of mind.Ĭreating your own plugin isn't easy and again sometimes you'll need hundred of eyes and a few audits If you want to make sure that It's truly secure. It is problematic, because most people will keep the vanilla keepass and won't be able to fit to their needs. Google won't help you, because these malicious plugins can be at the top of a google search.Īt the end of the day, most intermediate users probably won't install any plugin except a few of the very popular ones. It already happened in the past and It is still happening. Otherwise, we can't be sure that there isn't a malicious plugin out there. It's true that people can check the source themselves, If they have the skill required to do so, but even in this case for it to be truly secure we need hundreds of eyes and a few audits made by professionals. We need more audits and people looking at the source code. Speaking of plugins, here's the BIG problem with keepass plugin system. Unfortunately, not everyone likes keepass interface and there aren't a lot of plugins to help with this. Once we get used to the interface, It's quite straightforward to use. Keepass can achieve all the functions of paid password managers competitors, with a few tweaks or plugins. The code has been audited several times, has a good history and is likely to be secure. In Windows I’ll probably use the original KeePass.Keepass is a local password manager. On my Linux machines I think I might switch from X to XC, but I’ll test XC a few weeks first and look for bugs before the switch. But on Linux the GUI isn’t appealing, has bugs and requires mono so X and XC are better there in my opinion. The original KeePass for Windows/.Net has more functionality and is probably more secure in Windows than both KeePassX and KeePassXC and works great on Win7, 8.x and 10.Net lowers the risk for security related bugs created by programmers compared to C++. I don’t know, but it should’ve been put in an optional plugin not in the main program. Only disadvantage I could find was that it has a function to talk with web browsers through plugins which I don’t think I will use and therefore offers no advantage to me but might possibly be a security threat if accidentally left on in settings. I can’t say anything about security or how many hidden bugs it has, but the GUI is much better than KeePassX which has had unfixed GUI-bugs for a few years. OS X and Windows users might prefer KeePassXC over KeePassX as autotype works there: I tested KeePassXC for the first time today on Linux.
0 Comments
Leave a Reply.AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |