Best password manager?
Discussion
ZesPak said:
davek_964 said:
Although I understand the sentiment that somebody needs to pay for these things or they wouldn't exist (and I have paid for the full version of plenty of apps) I'm not sure what payment for Lastpass would give me. The premium features don't seem to be anything I'd actually use.
I use it from a lot of machines and locations, which always sends me an email to verify the machine/location. 2 factor would be a major help for example.TonyRPH said:
I'm using the free version, and I have a Lastpass app on my phone, and each time I log in I have to approve it, so you don't need to pay to get 2F auth?
That's my issue, at the moment I have to verify the location and device by email activation. I would prefer to have it in the authenticator app or something.Mr Pointy said:
Well one of them is Emergency Access. I don't know what arrangements you have made to allow access to your accounts should you die or be incapacitated but not having password access in those situations can be a big issue.
I work on the principle that I'll be dead, so not something I need to worry about! ZesPak said:
The main thing I dislike about lastpass is that they really want you on a paid subscription (login is cumbersome and the like), but I find it too expensive for my use now. I see that 1password is even more expensive.
I get it, but cup of coffee every month or have faith your sensitive information is secured properly? davek_964 said:
Mr Pointy said:
Well one of them is Emergency Access. I don't know what arrangements you have made to allow access to your accounts should you die or be incapacitated but not having password access in those situations can be a big issue.
I work on the principle that I'll be dead, so not something I need to worry about! https://www.theregister.co.uk/2019/02/05/cryptocoi...
ZesPak said:
TonyRPH said:
I'm using the free version, and I have a Lastpass app on my phone, and each time I log in I have to approve it, so you don't need to pay to get 2F auth?
That's my issue, at the moment I have to verify the location and device by email activation. I would prefer to have it in the authenticator app or something.See:
https://www.lastpass.com/multifactor-authenticatio...
https://www.reddit.com/r/Lastpass/comments/8vofjh/...
Can someone give me a brief outline of how these things work in practice?
I'm getting swamped with passwords for everything and sometimes struggle remembering them between my phone, iMac, Windows 10 laptop and work's PowerMac.
Do these store passwords in the cloud so they can be retrieved, or are they stored on a device somehow?
How are these apps better than writing them into a documents and saving them on my phone? (I'm not saying they're not, but struggling to get my head around how they are more secure)
I'm getting swamped with passwords for everything and sometimes struggle remembering them between my phone, iMac, Windows 10 laptop and work's PowerMac.
Do these store passwords in the cloud so they can be retrieved, or are they stored on a device somehow?
How are these apps better than writing them into a documents and saving them on my phone? (I'm not saying they're not, but struggling to get my head around how they are more secure)
boyse7en said:
Can someone give me a brief outline of how these things work in practice?
I used to have mine listed out in a notepad document. I have a different random password for every single website all generated by strongpasswordgenerator website. Remembering them is impossible so I would just copy/paste them into the password field from the document. Obviously anyone who has access to the document can look and then have passwords for everything. Using a password manager keeps the passwords safe and secure.
It works well because now when I go to log into a website the password manager will tell me if it has a password saved and then I can use it to log in. No need to remember passwords so they will instantly be more secure and no need to copy or paste either. If you have multiple accounts for a site then you can save them all and pick the account you want to use.
It also means if you use a mobile device or multiple computers all your passwords are saved and accessible wherever you are so long as you have the password manage installed.
You basically just need to remember 1 password - the password to the manager, everything else can be forgotten.
boyse7en said:
Can someone give me a brief outline of how these things work in practice?
I'm getting swamped with passwords for everything and sometimes struggle remembering them between my phone, iMac, Windows 10 laptop and work's PowerMac.
Do these store passwords in the cloud so they can be retrieved, or are they stored on a device somehow?
How are these apps better than writing them into a documents and saving them on my phone? (I'm not saying they're not, but struggling to get my head around how they are more secure)
They will generate random passwords for you, store them encrypted in a cloud service somewhere, sync them between devices and browsers, and fill them in for you as required. Some will let let multiple users (teams / families for example) share all or some passwords as required and let you control who has access to various subsets of details. I'm getting swamped with passwords for everything and sometimes struggle remembering them between my phone, iMac, Windows 10 laptop and work's PowerMac.
Do these store passwords in the cloud so they can be retrieved, or are they stored on a device somehow?
How are these apps better than writing them into a documents and saving them on my phone? (I'm not saying they're not, but struggling to get my head around how they are more secure)
Some will also store payment details and other secure notes and documents.
I've used one for years, and as a result have different, long, passwords for every site so if one site suffers a data leak the same email username remains unaffected on other sites. I only need to remember my password for 1Password, but its a good idea to at least know your email password too.
boyse7en said:
Can someone give me a brief outline of how these things work in practice?
I'm getting swamped with passwords for everything and sometimes struggle remembering them between my phone, iMac, Windows 10 laptop and work's PowerMac.
Do these store passwords in the cloud so they can be retrieved, or are they stored on a device somehow?
How are these apps better than writing them into a documents and saving them on my phone? (I'm not saying they're not, but struggling to get my head around how they are more secure)
They generally fall into two camps & which you prefer depends on your level of paranoia. One stores your usernames & associted passwords in an encrypted database on a local device, say a USB key, or you can store it somewhere like Dropbox. Others store this database on their servers in the cloud, but also have a local copy. Generally they are cross platform so you can access the same passwords on your Windows PC (& probabaly Linux), an Android phone, an iPhone etc. You have one master password you need to remember to access the database (you can link your fingerprint scanner to it as well) & you can supplement this with various forms of 2FA: I use a Yubikey with NFC.I'm getting swamped with passwords for everything and sometimes struggle remembering them between my phone, iMac, Windows 10 laptop and work's PowerMac.
Do these store passwords in the cloud so they can be retrieved, or are they stored on a device somehow?
How are these apps better than writing them into a documents and saving them on my phone? (I'm not saying they're not, but struggling to get my head around how they are more secure)
You don't need to cut & paste anymore: the password app auto-fills the fields for you.
Secondary functions are auto-generation of very secure passwords, storage of pdfs, & sharing with other family or team members plus a few others. If you lose your PC or phone you can generally use another device to access your store & log on to do stuff like email, cancel cards etc (if you use a cloud based service).
Generally look at Lastpass, 1Password & Keepass & have a play to see which suppports the level of cross-platform working you need. They all have free trials.
Thread revival
After resetting what must be the 20th password, I’ve had enough, giving in and getting a password manager.
If I list what I need, will someone be kind enough to recommend a manager ( from what’s I’ve read, it will be lastpass anyway, but you never know...)
- both mine and my wife’s accounts
- multi device/browser
- can connect to phone to recover accounts if necessary
(Not necessary but could be important) autogenerated passwords/ a way to recover it autogenerated password goes belly up...)
-other things that I’ve possibly not thought of...!
Is lastpass still king?
Thanks
ET.
After resetting what must be the 20th password, I’ve had enough, giving in and getting a password manager.
If I list what I need, will someone be kind enough to recommend a manager ( from what’s I’ve read, it will be lastpass anyway, but you never know...)
- both mine and my wife’s accounts
- multi device/browser
- can connect to phone to recover accounts if necessary
(Not necessary but could be important) autogenerated passwords/ a way to recover it autogenerated password goes belly up...)
-other things that I’ve possibly not thought of...!
Is lastpass still king?
Thanks
ET.
I wouldn't say Lastpass is king, but it will do most of what you require. It stores the encrypted list on the Lastpass servers (& a local copy) so if you want to keep your database locally then look at Keepass (although I'm not sure how good is it's integration with phones etc). Look at 1Password as well, both have free trials so you can see which you prefer. Think about using 2FA such as a Yubikey or similar.
Gassing Station | Computers, Gadgets & Stuff | Top of Page | What's New | My Stuff