Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

Shasterball

Suspended
Oct 19, 2007
1,177
750
Can't do it. I'm happy to support them by buying a release every couple of years. But I rarely do subscriptions. I'm still on version 6 and it does all I need. Soon, iOS will natively do all I need. They could have gotten a good deal of $$ out of me if they had stayed away from subscriptions. That being said, I'm sure they have made plenty :)
 
  • Like
Reactions: buddhistMonkey

noraa

macrumors 6502a
Jun 23, 2003
539
1,227
They just screwed thousands of users by removing the standalone feature in version 7.8 without warning. Glad I didn't hit the update button.
The standalone 1P 7.8 iOS and Mac app do still support local vaults, it’s just the new iOS Safari extension that doesn’t support them. 1P 8 is the version that will completely drop local vaults.

I’ve used and loved 1P for a good decade now, but with their latest dumb decisions, it’s time to move on. It really sucks, almost feels like a break-up, but sh*t happens I guess.
 

dojoman

macrumors 68000
Apr 8, 2010
1,934
1,089
The iOS extension specifically does NOT work with local vaults. Thus, you must have a subscription AND store all your passwords on 1P’s servers. Thus, subscriptions + non-local vaults are nearly inseparable at this point.
Yup exactly why I don't feel safe uploading to their server, but then again I'm currently using iCloud vault. I just signed up for 7-day trial. It's ok I don't think I want to pay for $3 a month to have someone keep my password.
 
  • Like
Reactions: buddhistMonkey

ideal.dreams

macrumors 68020
Jul 19, 2010
2,375
1,074
I was excited to see this until the plug-in notified me that it doesn’t support standalone vaults and asked me to subscribe. I just disabled it instead, since I have no interest in their subscription. Particularly now that Keychain natively supports 2FA.
I had the exact same experience today. It’s a shame as I’ve been using 1Password for the better part of a decade. I guess I’ll use the standalone version until it’s gone and then just jump over to Keychain. I was really hoping they wouldn’t go this route.
 

Mr. Heckles

macrumors 65816
Mar 20, 2018
1,385
1,795
Around
Keychain has come a long way, but 1P still offers a ton of nice/helpful/useful features that Keychain doesn’t support.
I agree with you 100%, but Minimalist password manager also (from the looks of it) only works with Apple stuff also.
 

noraa

macrumors 6502a
Jun 23, 2003
539
1,227
I agree with you 100%, but Minimalist password manager also (from the looks of it) only works with Apple stuff also.
Quite true, so really isn't a true solution for cross-platform users. But Minimalist does support a lot more features than Keychain does.
 

noraa

macrumors 6502a
Jun 23, 2003
539
1,227
This is what I do:

While that is an incredibly clever idea, what made the 1Password local vaults so great is that they didn't have to be stored in the cloud, thus not making the double-blind password approach to even be necessary. With 1P8 dropping local vault support (and the 1P7 iOS Safari extension only support online vaults) AgileBits is decreasing user security, and making such a double-blind password approach somewhat necessary.
 

usagora

macrumors 601
Nov 17, 2017
4,869
4,451
While that is an incredibly clever idea, what made the 1Password local vaults so great is that they didn't have to be stored in the cloud, thus not making the double-blind password approach to even be necessary. With 1P8 dropping local vault support (and the 1P7 iOS Safari extension only support online vaults) AgileBits is decreasing user security, and making such a double-blind password approach somewhat necessary.

imo, it's a smart thing to do even with local vaults. Of course, I understand it's a big PITA if you have hundreds of passwords, but it's not that big of a deal to start with your most sensitive ones (financial, email, etc.). To me, the convenience of cloud-based vaults is totally worth it.
 

Rigby

macrumors 603
Aug 5, 2008
6,225
10,170
San Jose, CA
Every password manager out there uses cloud hosting, including Apple. 1Password is the most secure and robust from all. I have been using it from 13 years.
Nope. Most Keepass-compatible apps don't, for example. They also use a standardized database format (so you're not locked into a specific app) and many are open source, so their implementations can be audited.
 

noraa

macrumors 6502a
Jun 23, 2003
539
1,227
The subscription has nothing to do with hosting in the cloud.

Every password manager out there uses cloud hosting, including Apple. 1Password is the most secure and robust from all. I have been using it from 13 years.
That's simple not true. The current 1Password 7 supports local vaults. These vaults can be stored in iCloud or Dropbox (or whatever other cloud service you want to use), but they DON'T have to be. A local vault can be stored 100% only on your local computer. These vaults can even by synced to your iPhone via a WiFi sync on you local network, so the vault never once leaves your local network, and never once touches a 3rd party server.
 
  • Like
Reactions: Alwis and ealeks

jlc1978

macrumors 603
Aug 14, 2009
5,513
4,291
I too am still using the old version, and will never go subscription.

A free open-source equivalent worth checking out is Bitwarden: https://bitwarden.com. I haven't tried it yet but believe you can transfer your data from 1-password.
I use Bitwarden and while you can transfer data it’s not a 1 to 1. Some data, such as credit/bank accounts come across with odd mappings and attachments aren’t transferred.In addition in a number of cases BW, even when it has the pw, doesn’t recognize the site and returns no PW found. I like BW and even paid for it to support it’s developers but it can be frustrating when passwords you know it has don’t show up.
 

dumastudetto

macrumors 603
Aug 28, 2013
5,155
7,497
Los Angeles, USA
I'm still using old version I will never use subscription what if they get hacked all your passwords for every single sites you visit will exposed?

I certainly understand the discomfort. I too had similar concerns for several years. I suspect the risks are much higher that your computer will be compromised and expose critical data, than the data being lifted from 1Password servers. You are surfing around the internet, opening things, doing things on the very computer storing your critical sensitve data. 1Password is not.

Even if they were hacked, three pieces of information are needed to decrypt your 1Password data, only one piece of that data is held by 1Password. It would take such incredible awe-inspiring computing efforts and time to even decrypt one hacked 1Password vault that no sane person would ever consider it viable. If it ever becomes even remotely close to becoming viable in the future, due to advances in computing power, 1Password will simply beef up the security keys and advise everyone to perform a key reset to make it unviable again.

1Password is trusted by some very large corporations, including one for whom I have personally worked. You should feel comfortable your data is safe if you choose 1Password.
 

Mr. Heckles

macrumors 65816
Mar 20, 2018
1,385
1,795
Around
Nope. Most Keepass-compatible apps don't, for example. They also use a standardized database format (so you're not locked into a specific app) and many are open source, so their implementations can be audited.
“We use open standards that are scrutinized by the experts.
1Password wasn’t built in a vacuum. It was developed on top of open standards that anyone with the right skills can investigate, implement, and improve. We collaborate with other security experts to make sure 1Password is rock solid.”

 
  • Like
Reactions: sphexx and mhnd

noraa

macrumors 6502a
Jun 23, 2003
539
1,227
I too am still using the old version, and will never go subscription.

A free open-source equivalent worth checking out is Bitwarden: https://bitwarden.com. I haven't tried it yet but believe you can transfer your data from 1-password.
Looks like Bitwarden is still cloud based. Does it support local-only vaults?
 

Mustang Maniac

macrumors newbie
Feb 25, 2007
16
0
I'm confused, what does this extension do that I can't already do? I've been able to fill passwords for quite some time.
 

noraa

macrumors 6502a
Jun 23, 2003
539
1,227
“We use open standards that are scrutinized by the experts.
1Password wasn’t built in a vacuum. It was developed on top of open standards that anyone with the right skills can investigate, implement, and improve. We collaborate with other security experts to make sure 1Password is rock solid.”

That doesn't address the fact the 1P8 only supports online vaults. I don't care how secure 1P's servers are, how secure the vault's encryption is, the minute that vaults leaves my computer it becomes a security risk. I don't have to worry about that with 1P7, nor do you have to worry about that with the plethora of KeePass-compatible programs.
 
Last edited:
  • Like
Reactions: ealeks and bradl

Rigby

macrumors 603
Aug 5, 2008
6,225
10,170
San Jose, CA
“We use open standards that are scrutinized by the experts.
1Password wasn’t built in a vacuum. It was developed on top of open standards that anyone with the right skills can investigate, implement, and improve. We collaborate with other security experts to make sure 1Password is rock solid.”

That doesn't mean that their implementation can be audited. Personally I would never use a password manager that isn't open source. Password databases are obviously a very juicy target.
 

Mr. Heckles

macrumors 65816
Mar 20, 2018
1,385
1,795
Around
That doesn't address the fact the 1P8 only supports online vaults. I don't care how secure 1P's servers are, how secure the vault's encryption is, the minute that vaults leaves my computer it becomes a security risk. I don't have to worry about that 1P7, nor do you have to worry about that with the plethora of KeePass-compatible programs.
I was point out the open source part, that’s all.
 

dumastudetto

macrumors 603
Aug 28, 2013
5,155
7,497
Los Angeles, USA
That doesn't address the fact the 1P8 only supports online vaults. I don't care how secure 1P's servers are, how secure the vault's encryption is, the minute that vaults leaves my computer it becomes a security risk. I don't have to worry about that 1P7, nor do you have to worry about that with the plethora of KeePass-compatible programs.

Do you think your computer is immune to security risks as your browse the web, open emails, attachments, documents and files? I would suggest the vault stored on your computer is at more risk stored on a computer used for general computing, than one stored in the cloud for one purpose only.

The 1Password cloud vault is also protected with FAR better encryption than the local vault you are using.
 
  • Like
Reactions: sphexx

orijinal

macrumors 6502
Jun 6, 2005
385
0
The system-wide autofill on iOS already works pretty well. Why use this over that?
 
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.