Could you elaborate on this further. I have never used a 3rd party Company to manage all my passwords simply out of lack of trust. What makes 1Password stand out and what is their history with customer data or breaches?
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
1Password for Mac Updated With Apple Silicon Support
- Thread starter MacRumors
- Start date
- Sort by reaction score
Yeah but no thanks to subscription
I am still using 1Password 6. Have zero interest in paying a subscription.
Any reason I should consider 1Password over Dashline, which I just started using a few days ago. So far, very impressed with Dashline.
I stopped using 1Password a few years ago due to their horrible handling of memory leak vulnerability which essentially reveals all the secret passwords to any local unprivileged program in Windows. Not sure whether they have fixed it by now or still in denial mode.
Same as the others, I stopped using it years back due to the subscription. Their app was great, though.
Are you speaking about the flaw which affects most password managers and it was a Operating System flaw that allowed full memory access. Once the OS is taken down then everything in RAM is open as well. Washington Post seem to have targeted the popular Commercial app in their article.
As has been said, keychain is macOS / iOS only. But... 1Password has good organisational capabilities. I use it, for example, to securely store a scan of my passport, and numerous database server logins for work.
Having said that, I don’t care about PC access and there’s no way on God’s Earth I’ll pay a subscription for something like this. I got the iOS version before subs kicked in, and got a stand-alone version for macOS. They sync via iCloud, so I don’t use 1Password servers. This setup works for me, and I don’t see regular withdrawals from my bank account.
They did it deliberately, for very obvious reason. And if you’re using Mac App Store version there is no way to run in standalone mode. The worst of all, every single button, drop menu and hyper link inside ver 7 will lead you to subscription page, including the hyper link that marked as “one time purchase” or some sort. All what they did is to make you believe that subscription is your only salvation from being locked out of your old data if you’re upgrading from previous version.
That’s why I recovered old version app from Time Machine, exported all the records, and moved to another password manager and ditched 1Password for good, after being a loyal user for decade. I can’t stand for fraudulent behavior.
License (one-time) fee vs subscription breakdown: The license is for a single platform and single version, website version only. Windows or Mac, not both. If you have both Mac and Windows computers then you have to pay twice (2x $50). If you're crossing platforms like that then you'll also need to provide your own cloud or storage point to sync between the two, too.
In short, really it makes no sense to license. See if BitWarden is suitable for your use case.
I like 1Password, but don't want the hassle or the sub fee. So, for me, what I've done instead is this: For at least the past three years Parallel's offers a bundle deal, they sell you the new version for $50 and throw in free 1-year trial subs of a bunch of programs, of which, 1Password and Acronis True Image are a part of.
After the 1 year "trial" ends, I export my "vault". Activate the new 1-year trial. Then import last years vault. This gets me the latest version of Parallels, 1Password, and Acronis backup.
Last edited:
The Mac App Store version is subscription only. Only the website download version of the Mac or Windows can be licensed.
Not that it makes sense. Especially if you're only Mac / iPhone / iPad - since you can just use Safari Keychain.
It has nothing to do with the OS. 1Password is written on language that doesn’t support memory scrubbing and is running in user space where every other application can access its memory. Its design is flawed. Other apps have quickly patched or mitigated the issue but 1Password just sat there and denied there was any issue on their side. I won’t go into the details here. There are some lengthy threads on their user forum to discuss this issue.
The beta with M1 support has been available since December. I recommend using isapplesiliconready.com to check any applications.
That's not required. You can store it locally or on other cloud services.
However you're missing the point. You could store the vault(s) at evilmalware.com. They're encrypted; exposing them to adversaries is not scary because they can't do anything with them. So your concerns are unfounded.
The file format is documented.
(Tell me you've read all the bitwarden source? And you understand crypto well enough to verify its safety? And you're sure your compiled version is the same as the code you read?)
Not correct, 1P can run with local files only. Of course... there's no point in doing that, unless it's because you want to use the non-subscription version.I don't believe 1Password can do that but, Strongbox can.
Support - Strongbox
Helpdesk Read our how-to guides or contact our support team. Contact Us Please search the help articles first, as this will likely allow you resolve your issue much more quickly. The following articles address common problems: My Database Isn’t Syncing I Can’t Unlock My Database Strongbox...strongboxsafe.com
Or you could use the current version, but the non-subscription edition.
You appear to be using words you don't understand. What do you think "memory scrubbing" is?
User space is where *all* apps run. Only drivers don't run in user space, and Apple is phasing them out in favor of extensions that *do* run in user space (a very good thing, though annoyingly disruptive to some). Of course, being in user space is not a security flaw in the sense you describe, as all processes' memory space is protected from all others.
You could make an argument that 1P's crypto core should run with a UID different from the actual user, and talk to the UI through an API, so that an adversary that successfully compromises the main user can't get all the passwords. However, that argument is fatally flawed as such an attacker has many viable paths to success anyway (capturing keystrokes, UI MITMs, & more).
Spreading FUD all over doesn't help anyone.
So, can anyone who is familiar with current versions of 1P and Bitwarden compare the two? I haven't used Bitwarden, but here are some of the features in 1P that I use a lot:
- Multiple separate vaults for family, work, personal, etc.
- Browser integration, filing out entire pages with a single keystroke (defaults to Cmd-\)
- fill out not just passwords but credit cards, personal data, etc.
- Understands weird nonstandard form layouts very well, almost always fills them in right
- Great organizing and searching features
- support for encrypted notes, wifi routers (and regular ones), software licenses, credit cards, lots more types
- various sharing features
- unlimited custom fields and field names
- excellent support for keyboard-based workflow
If Bitwarden can do all (or most?) of that, it might be work a look.
- Multiple separate vaults for family, work, personal, etc.
- Browser integration, filing out entire pages with a single keystroke (defaults to Cmd-\)
- fill out not just passwords but credit cards, personal data, etc.
- Understands weird nonstandard form layouts very well, almost always fills them in right
- Great organizing and searching features
- support for encrypted notes, wifi routers (and regular ones), software licenses, credit cards, lots more types
- various sharing features
- unlimited custom fields and field names
- excellent support for keyboard-based workflow
If Bitwarden can do all (or most?) of that, it might be work a look.
I paid a lifetime fee to Strongbox which gives me updates for both iOS and Mac. That fee was cheaper than 2 years of subscription to 1Password. It does everything 1Password does without having to rely on any third party server.
I understand the frustration with the 1pwd subscription model. I’m not a fan of it myself, but protecting my passwords is an absolutely missing critical part of my personal and working life - so the $3.75 a month to protect my digital life is a huge deal to me.
I’m reluctant to use an open source password manager with all my data. That requires a lot of trust in people who have contributed to that platform - which is too risky for me.
I appreciate that 1pwd stores data in Canada as we have different privacy laws.
I was going to use keychain but I do need cross platform compatibility - plus 1pwd has so many other features that iCloud lacks.
I’m reluctant to use an open source password manager with all my data. That requires a lot of trust in people who have contributed to that platform - which is too risky for me.
I appreciate that 1pwd stores data in Canada as we have different privacy laws.
I was going to use keychain but I do need cross platform compatibility - plus 1pwd has so many other features that iCloud lacks.
As has been pointed out many, many, many times since 1Password started offering a subscription model, they still sell the stand-alone (perpetual) license model. I just upgraded last year to the latest version, and don't intend on paying for a subscription to it for at least another few years when my current version (and any near-future free updates) stop running on whatever Macs and iOS devices I'm using at the time.
I like having my vault stored where I want it stored and have full control over how and where backups of the vault are made.
I was a subscriber to 1Password for many years. I am aware of the standalone option. At this point, I am happy with Strongbox with has all the same features.
I would need to purchase 2 new licenses, one for me and one for my wife. We both share the same 1Password vault, using Dropbox, on 2 different computers. 1Password 6 still works great even on Catalina and iOS 14.
Last edited:
It’s useless on Android, Linux, and Windows. Not to mention it’s crap. I don’t get why people say this all the time where there is a topic about passwords managers. There is a world outside of Apple.
I also can share passwords with family members very easily. My mom locked herself out of 1Password and with the family subscription, I can help recover her data. It also stores more than just passwords. iCloud Keychain is so limited and its just garbage.