Password Storage services

Forums › Desktop computing › Password Storage services

1 | ... | 5 | 6 | 7 | 8 | 9 | 10

michaelmurfy

meow
13243 posts

Uber Geek

Moderator

ID Verified

Trusted

Lifetime subscriber

#3043899 2-Mar-2023 13:56

johno1234:

BW fills based on matching the URI so if I only setup BW passwords for trusted pages it should be safe, right?

So did LastPass and this got exploited. IMHO, I wouldn't risk it but your call. It is so simple to fill with a keyboard shortcut.

Michael Murphy | https://murfy.nz
Referral Links: Quic Broadband (use R122101E7CV7Q for free setup)

Are you happy with what you get from Geekzone? Please consider supporting us by subscribing.
Opinions are my own and not the views of my employer.

SumnerBoy

2074 posts

Uber Geek

ID Verified

Lifetime subscriber

#3044018 2-Mar-2023 20:48

That is a good shout @michaelmurfy - never thought about it like that - disabling auto-fill right now!

tieke

674 posts

Ultimate Geek

ID Verified

#3044182 3-Mar-2023 09:35

johno1234:

Wow, is the lid nailed down on the LastPass coffin now?

https://arstechnica.com/information-technology/2023/02/lastpass-hackers-infected-employees-home-computer-and-stole-corporate-vault/

Yeah, reminded me to start going through and updating my less-important passwords. Although I had an extremely strong and unique master LastPass password, and virtually every site had a different e-mail address and password to avoid single-site exposure issues, I hadn't anticipated that LastPass would give up their entire vaults to hackers, or that their password security was so poor - the fact that my 18-digit long random-character master password had only one iteration rather than the 100,000 they frequently headlined was shocking.

Unfortunately I have over 900 websites that need attending to. After the initial LastPass notification I looked at my account, spotted there was only one password iteration so exported and deleted the account and moved to BitWarden. I changed the passwords on probably the forty most important sites, but LastPass's assurances meant I didn't bother with the smaller ones. Now that I know it's pretty much just a matter of time before every password/email combo is sold off, it's time to update hundreds more.

MartinGZ

359 posts

Ultimate Geek

Subscriber

#3285130 22-Sep-2024 16:06

I've moved from Bitwarden to 1Password.

I was finding the UI with Bitwarden just too clunky and it was often not offering to fill passwords where it should. I'd end up having to copy and paste, when in my opinion Bitwarden should have been doing that. I've subscribed to Bitwarden for some while now, and I reckon they really need to increase their fees to $20 (still cheap) and make the free one $5. Perhaps by doing that they will be able to put more effort into getting things to work better. A minor pet peeve is that they still do not clear the clipboard by default - to me this is just a no-no for security software. I provided feedback on this yonks ago, but although they have made substantial changes since then, this has not been rectified.

So I tried out a couple, and settled on 1Password. I'm not a particular fan of the large amount of real-estate it takes up, but the way it is able to fill passwords, integrate with Windows Hello, offer passkeys is IMHO far better than Bitwarden. I use fingerprint for everything on Windows laptops and android devices, but Bitwarden was pretty clunky with it's implementation. 1Password is pretty smooth in comparison.

I can't say 1Password is perfect, like Bitwarden it will occasionally not fill a password, but I am no longer getting really, really, grumpy with my PWM - which is a big plus.

1Password imported the Bitwarden file without issue, and everything seemed to be there. They do implement android (and iOS?) app passwords differently and those had to be generated again. In Bitwarden they are stored as things like "androidapp://com.microsoft.....", and it would have been nice if 1Password had converted those, but it didn't.

mattwnz

20149 posts

Uber Geek

#3285290 22-Sep-2024 23:51

MartinGZ:

I've moved from Bitwarden to 1Password.

I was finding the UI with Bitwarden just too clunky and it was often not offering to fill passwords where it should. .

I used to have this problem with Lastpass, but it is pretty rare with bitwarden and I don't find it clunky either compared to lastpass. Maybe it depends on the website and the scripts they use. Especially where the username and password are on different screens.

1 | ... | 5 | 6 | 7 | 8 | 9 | 10