Slightly off topic here since I'm inquiring about an iOS version syncing issue with 1Password, not so much the laptop/desktop applicaiton itself: I originally wanted to sync my laptop and my iPhone / iPad 1Password data via Dropbox, but I was rather put off by the access request on iOS to be able to access ALL my Dropbox files instead of just the 1Password data.
Somewhere in a FAQ or whatever on agilebits' website it's explained that the "all files" request is currently necessary because of a file pointer issue that the developers hope can be resolved in the future. The pointer in question has to be in the root of the folder and cannot currently be put in the 1Password app's folder I guess, so the only way to get needed access on iOS is ask for all the files in Dropbox folder.
"One or everything" does seem inconvenient for Apple to make the developers work with when one folder is not enough. I guess I could encrypt most of the other stuff I keep in Dropbox, not that much anyway, I use it mostly to move captured items, newsclips or pdfs etc. off a laptop I don't back up, onto one that uses Time Machine. So I could just make a smallish encrypted disk image and move my stuff into and out of that on Dropbox. Still, I don't like the idea of granting full access to the Dropbox. I don't understand the implication of a non-Dropbox app being able to write to the root of the folder from the iOS environment, basically. Everything else only asks for access to its own stuff.
So meanwhile I don't really use the iOS version of 1Password much on my mobiles, since I don't fancy granting that broader access. I have stored a couple website logins for newspapers and such that I use all the time and then I just don't sync. But I have to remember to manually update the passwords on iPads and iPhone when I change them on the laptop. It's a drag. Is there any news on when the access request from the iOS version will only be for the 1Password folder instead of everything in the Dropbox?!
There's no real worry here. We only access the 1Password related data. But, we request access to all of Dropbox because for legacy reasons we allowed users to put their data almost anywhere in Dropbox. I suspect this will change down the road.
Sounds like you ended up talking to Jeff though, as he's our security expert, his advice would be best to follow if he provided any to your specific questions.
So is it safe to update or is it still bugged to hell?
We released 4.2.5 and any crashing related issues we are aware of were fixed.
A question about 1P. If it creates mind numbing passwords, I have to log in with a machine that has 1P? What if I borrow a computer or use a guest computer at a hotel? I'm not thinking of banking with anything other than mine, but a lot of places want a password anyway. It would be impossible to log in correct? Assuming I did not remember the password. Then if I want it on my ipad and iphone, I have to buy the iOS copies for those?
I suggest only logging into important sites on trusted computers. Personally, I'd never trust a borrowed computer or a public computer. I'm obviously a bit more on the paranoid side, but I go nowhere without my iOS devices. So, I use a VPN on those with 1Password to log into any site when I am on any untrusted network.
You can, as the user above me states, use 1PasswordAnywhere. But, again, this involves trusting the computer. Any computer I didn't setup is effectively a "untrusted" computer in my mind.
Buy once on iOS and you're set.
You buy it once for your appleid on IOS, then you can use it on all your IOS devices. Only catch is that Agilebits can at some point create a new app instead of updating the existing one, like (as I understand it) did with version 4. A lot of existing users were not happy with that move.
Apple did it with Logic, Tweetie did it with Tweetie 2, it doesn't appear as though Apple is going to allow developers to charge upgrade pricing for existing users and full price for new users. We'd love it if they did allow this, but it doesn't appear they will. OmniGroup seems to be heading down this same path as well. They whole reason for their "OmniKeyMaster" app is to allow MAS users to get a website license, allowing discounted upgrades.
This is going to become a new normal thing. And for history on 1Password:
Versions 1-3 were the same app. So users who purchased version 1-2 got free upgrades until version 4. Version 4 was a brand new app, for a variety of reasons, I can run through those if you wish, just let me know. I have no idea what we'll do with version 5, it's just too far out. Keep in mind that version 3 of the iOS app had been out for around 3 years before we released version 4.
I hope that helps explain things a little better.