4/30/2023 0 Comments Keeweb password managerAll of these accounts include login details that are difficult to remember. For everything else I use duplicati2.Using the Internet users register on sites and platforms. I use rclone to backup my password database immediately to the cloud on every save. I am also concerned with database corruption. ![]() This factored heavily into how I have decided to store, and backup my database. Recently, two family members have been hit by ransomware. BackupĪ password database contains so much critical info, that it is essential to set up a backup/restore solution for it. Keeweb has it on the todo list though.įor a completely different solution I would probably look at passwordstore. KeepassX and Keeweb do not support keepasshttp out of the box, which is a no-go for me. So if you anyway have to trust it for that, then you might as well trust it for desktop. Keeweb is the only solution which can run in a browser. Keeweb uses node.js and electron (which is huge), and Keepass2 relies on mono/dotnet framework (also huge). KeepassX is also multi platform, and is much leaner than the other desktop tools clients on this page. ![]() Keeweb could potentially solve this as it is truly cross platform. I can appreciate why LastPass($) is an attractive solution. I think Keepass2 is a great open source solution, but it the sheer number of projects I have to trust for something this critical is somewhat of a problem. Some alternatives would be Keeweb, Keepass2 (if i can get it to run using mono), and KeepassX. I consider using MacPass which looks good (I don’t currently use it) - it has a builtin keepasshttp server which would be convenient for everyday browsing. I have a self hosted version that I can use if i have run out of other options. Keeweb is a sleek node.js project, and can run both in the browser and on the desktop (it uses electron for that). But do I trust my phone to keep any secrets? Online fallback solution I am not totally comfortable with having to trust plugins. I use it with two plugins: 1) keeagent which replaces pageant when i use putty. In the end here are the clients that I use, or consider to use: Windows Many of the alternative clients for other platforms have a smaller user base, and consequently the code has received less scrutiny. It should be possible to run it with mono on linux and osx, but I have not had success with that. It is a C#-project, and is primarily designed for windows. That is inherently less secure. Can I trust them all? I trust the main Keepass2 project. ![]() But one thing that makes me uncomfortable is that I have to use a different client for every platform. There are keepass2 clients for all the different platforms. Keepass2 allows me to store the database in the cloud (webdav/google drive/dropbox/…). I don’t trust the cloud, so it is essential that the decryption takes place client side. This means the database has to be hosted/synced to a server or to the cloud. Additionally I would also like to have a fallback solution for how I could access the db in an environment where I cannot install anything. I want to be able to access my database from every device. It is a difficult decision because you have to place quite a lot of trust in the solution. After many considerations I eventually decided on a keepass2 database. It is difficult to pick a password manager.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |