Password manager

[Warpe]

Changing all my passwords tonight. Can any of you computer literate types recommend a good secure password management app I can install?

[lolzzz_321]

I use roboform for web browser stuff.

[Jack Sawyer]

yup, roboform

other passwords are stored in a passworded excel file, which is constantly updated

[vqc]

keepass
i now run everything except for my OS off of a USB key, including KeePass

www.portableapps.com

[Halv]

I'm using keepass too. Though I'll repeat my warning from the other thread: the auto-type feature (in keepass 1.x) is NOT keylogger safe. The developers recommend using Drag&drop or Copy to clipboard if you're worried about keyloggers.

The Copy to clipboard feature is supposedly moderately safe from clipboard sniffers since it doesn't alert other apps that the clipboard has been updated. Yesterday I tried to check that out, so I just wrote a simple ahk script that pops up a message whenever the clipboard is changed. Turns out it could sniff out the password from the clipboard just fine.

I'm gonna contact the developers for an explanation/fix, but for now I'm using drag&drop wherever it's possible.

[midas06]

pwsafe is the best I've used

[Muzzard]

lol?

Ok so you dont have to type your shit in - so they can't keylog it. But if they can get a keylogger on your computer then they can hack any program that stores passwords. All your passwords in one easy hack, thanks.

[Halv]

if they can get a keylogger on your computer then they can hack any program that stores passwords. All your passwords in one easy hack, thanks.

Is this something you think or something you know? If it's something you know then I'd like a link to a source.

[Halv]

Obviously if someone gets a keylogger onto your machine they can get the master password you use for keypass - hence using an usb key PLUS a master password to unlock it. Remember to back up the usb key file somewhere though, or you won't get access to your passwords if the usbkey is lost/broken/etc.

I'm thinking having it on my mp3-player and on my phone is nice? That way I'll always have them with me too.

[vqc]

lol?

Ok so you dont have to type your shit in - so they can't keylog it. But if they can get a keylogger on your computer then they can hack any program that stores passwords. All your passwords in one easy hack, thanks.

not if my keepass password is 13P@(Q$*UasdfpoijFP@#98fjPODSjong349n9avdojvq934SJ DF@#)(*NvnANDW095039-10235(E(FN12341SDJF)(ENVNSD)(123412*&$(@)37YH)(&G$ &NV($N@v13241412341(*#n)(*vn#$(N0
they wouldn't hack that in a million years

[will641]

do you guys keep your passwords on a hard copy in a folder somewhere safe? or just remember them...seems like a hard copy would be better, because the chances of someone breaking into your house for passwords is relatively close to nill.

[Halv]

I keep mine in keepass on a usb stick .

[jyms]

Mine are in a folder, labeled something completely different. I also changed the extension from .txt to an .exe file. I just change it back if I need it. Most I remember at the moment, but I will be upgrading my system and difficulty.