Lastpass or 1Password?

[Primejimbo]

I only have a few dozen passwords. My algorithm works completely fine to produce unique passwords and they're also very complex.

1Password did make me curious though. I actually downloaded it to my iPad to experiment with it. So far it's fine, but I'm not sure if I need it. Especially since I'm concerned about the safety of locally stored passwords. It's not just the hackers - I mean if your password manager is the only place where you store your passwords and then you forget your master password you'll lose your entire digital life on the internet.

Mine is a messed up acronym that doesn't make sense, but I remember it. There are other ways to recover you digital life in emergencies too. It's not lost forever (well some can be), and why there are recover email addresses and cell phone numbers to recover too. 95% of all my passwords are at least 20 characters long, and my master password is longer than that. The only passwords I remember are the Apple ID, my bank, and my master password.

I have been using 1Password for over a year now and it's my favorite app.
Also, maybe this might be a good read for you:
https://blog.agilebits.com/2014/07/16/1password-is-a-very-safe-basket/

 

[wrx09md]

Here's a top tip from me

Create a tag called "Physical Wallet" or similar and tag any items that are in your real wallet with it. This way you can tell exactly what you lost if it is lost or stolen.

I'm sure it's simple and I just can't figure this out. How do you do that? Love my 1PW by the way. Thanks

 

[glenthompson]

I'm sure it's simple and I just can't figure this out. How do you do that? Love my 1PW by the way. Thanks

Edit the entry and go to the bottom of the page and there should be an entry for tags. Just type in wallet as a tag. Only took me a couple of minutes to tag all the items in my wallet.

 

[Scuba629]

I bought 1Password on the MacApp Store. I haven't really used it yet and would like to start. My plan is to use a main vault for myself and share another vault with my wife. She has a PC and iPhone/iPad. Do I have to buy another license? If so did I forfeit any bundle discount when I purchased it though the MacApp Store? I think I also read something about family pricing too.

A few other questions I have... How secure is Dropbox sync? Can I use iCloud sync for my main vault and then Dropbox for the one I share with my wife? Does either Chrome or Safari work better with 1Password? I'm guessing when I download and Install it both add-ons will be put into my browsers?

Lastly is 1PasswordAnywhere safe? I thought I could use it at work to sign into things like my gmail, amazon, and other accounts. I can't download the app at work and I don't think it works without it running.

edit: I guess I would have to use Dropbox for both vaults. I already have my Dropbox logged into her phone for an app called YNAB. Will she be able to get to all my stuff with this setup? Even if I have two vaults?

 

[glenthompson]

I bought 1Password on the MacApp Store. I haven't really used it yet and would like to start. My plan is to use a main vault for myself and share another vault with my wife. She has a PC and iPhone/iPad. Do I have to buy another license? If so did I forfeit any bundle discount when I purchased it though the MacApp Store? I think I also read something about family pricing too.

A few other questions I have... How secure is Dropbox sync? Can I use iCloud sync for my main vault and then Dropbox for the one I share with my wife? Does either Chrome or Safari work better with 1Password? I'm guessing when I download and Install it both add-ons will be put into my browsers?

Lastly is 1PasswordAnywhere safe? I thought I could use it at work to sign into things like my gmail, amazon, and other accounts. I can't download the app at work and I don't think it works without it running.

edit: I guess I would have to use Dropbox for both vaults. I already have my Dropbox logged into her phone for an app called YNAB. Will she be able to get to all my stuff with this setup? Even if I have two vaults?

I can't help you with the licensing questions but you might try to get your wife to switch off a PC to a Mac.

Any of the syncing is fairly safe as long as you have good passwords. The password vault is encrypted before sending to the cloud. Even if someone got hold of the file they are unlikely to break it if you have a solid password. Read the AgileBits blog entry on creating secure passwords. I use a variation of the dice words method which produces an easy t remember but secure password.

You can only sync to one service. Choose wisely. If you switch from iCloud to DropBox, it doesn't delete the iCloud vault so it will be stored in two places.

My wife and I maintain our own vaults but we each have access to the others so we can get into accounts in an emergency. It works fine for us as we have little overlap in account access.

I use Safari as my primary browser and Firefox for any incompatible sites. It works fine with both of them. Install the 1Password add-in into all the browsers you use.

Some companies block access to various types of sites like file sharing (DropBox) and password apps. It can be hard to use it on a work computer. You might be able to load the app on the work computer and sync the vault at home, then it would be available at work but wouldn't sync new passwords.

 

[Zxxv]

I bought 1Password on the MacApp Store. I haven't really used it yet and would like to start. My plan is to use a main vault for myself and share another vault with my wife. She has a PC and iPhone/iPad. Do I have to buy another license? If so did I forfeit any bundle discount when I purchased it though the MacApp Store? I think I also read something about family pricing too.

A few other questions I have... How secure is Dropbox sync? Can I use iCloud sync for my main vault and then Dropbox for the one I share with my wife? Does either Chrome or Safari work better with 1Password? I'm guessing when I download and Install it both add-ons will be put into my browsers?

Lastly is 1PasswordAnywhere safe? I thought I could use it at work to sign into things like my gmail, amazon, and other accounts. I can't download the app at work and I don't think it works without it running.

edit: I guess I would have to use Dropbox for both vaults. I already have my Dropbox logged into her phone for an app called YNAB. Will she be able to get to all my stuff with this setup? Even if I have tweo vaults?

Minikeepass is securer as is keepassX because they both use a keyfile. This means you need your data base/vault, your password and your keyfile to open the vault. It's also open source so you can check the code to see if there are any back doors.

1password only uses a password and it's not open source

 

[Scuba629]

I can't help you with the licensing questions but you might try to get your wife to switch off a PC to a Mac.

Any of the syncing is fairly safe as long as you have good passwords. The password vault is encrypted before sending to the cloud. Even if someone got hold of the file they are unlikely to break it if you have a solid password. Read the AgileBits blog entry on creating secure passwords. I use a variation of the dice words method which produces an easy t remember but secure password.

You can only sync to one service. Choose wisely. If you switch from iCloud to DropBox, it doesn't delete the iCloud vault so it will be stored in two places.

My wife and I maintain our own vaults but we each have access to the others so we can get into accounts in an emergency. It works fine for us as we have little overlap in account access.

I use Safari as my primary browser and Firefox for any incompatible sites. It works fine with both of them. Install the 1Password add-in into all the browsers you use.

Some companies block access to various types of sites like file sharing (DropBox) and password apps. It can be hard to use it on a work computer. You might be able to load the app on the work computer and sync the vault at home, then it would be available at work but wouldn't sync new passwords.

Trust me I do plan to try and get her moved from PC to Mac. She won't take a new machine until her current one dies however.

I guess i'll use Dropbox then. Like others have said I want it secure but would have a hard time remembering a secure password to login and click on the html file to get to everything with 1PasswordAnywhere. I can't have my phone at work either. If I could then it might be easier and I could use two factor codes.

Maybe I just make Gmail and sites like amazon and macrumors easy to remember? We can't use dropbox or load any non work related applications on our machines. I might be able to add an extension to my browser so maybe lastpass is better in that way..

 

[AGKyle]

I bought 1Password on the MacApp Store. I haven't really used it yet and would like to start. My plan is to use a main vault for myself and share another vault with my wife. She has a PC and iPhone/iPad. Do I have to buy another license? If so did I forfeit any bundle discount when I purchased it though the MacApp Store? I think I also read something about family pricing too.

A few other questions I have... How secure is Dropbox sync? Can I use iCloud sync for my main vault and then Dropbox for the one I share with my wife? Does either Chrome or Safari work better with 1Password? I'm guessing when I download and Install it both add-ons will be put into my browsers?

Lastly is 1PasswordAnywhere safe? I thought I could use it at work to sign into things like my gmail, amazon, and other accounts. I can't download the app at work and I don't think it works without it running.

edit: I guess I would have to use Dropbox for both vaults. I already have my Dropbox logged into her phone for an app called YNAB. Will she be able to get to all my stuff with this setup? Even if I have two vaults?

If you send us your receipt from the Mac App Store we can create a coupon for you to get the same price on the website for the Windows version had you bought the bundle.

I use Dropbox for my primary sync source. You can read more about how the security of Dropbox doesn't matter here:

https://blog.agilebits.com/2014/01/12/dropbox-breach-hoax-1password-security-master-password/

Can I use iCloud sync for my main vault and then Dropbox for the one I share with my wife?

Yup.

Does either Chrome or Safari work better with 1Password?

They should be more or less identical as the code for the browser extension is the same. There are a few gotchas with Chrome though, notably that Go & Fill (clicking a url in the main app) is broken. Bugs are filed. The other is that the keyboard shortcut may not behave properly if you're using multiple Chrome profiles.

Filling should be more or less identical though.

I'm guessing when I download and Install it both add-ons will be put into my browsers?

Goto the main application, click 1Password in the top left, choose "Install Browser Extensions" and it'll take you to the proper page.

Lastly is 1PasswordAnywhere safe?

You'll want to be careful using it on untrusted networks. 1PasswordAnywhere was designed in a very different time. Just be aware you should probably only use it on trusted computers and trusted networks. The iOS and Android apps are free for basic features, you might find that useful to use at work.

Will she be able to get to all my stuff with this setup? Even if I have two vaults?

You'll have two vaults, thus two files in Dropbox. She just needs to choose the appropriate file in Dropbox for her primary vault. Then your secondary vault can become her primary.

Let me know if that helps or if you have any other questions!

 

[Scuba629]

I guess the only issue or hardship I have is when I'm at work. We can't load any applications on our machines If I had a way to load 1Password into my browser like Lastpass I would be all in.

Well I guess i'm already in, but my trouble is the above. The 1PasswordAnywhere is ok like but like some have mentioned really not the best in security.

 

[AGKyle]

I guess the only issue or hardship I have is when I'm at work. We can't load any applications on our machines If I had a way to load 1Password into my browser like Lastpass I would be all in.

Well I guess i'm already in, but my trouble is the above. The 1PasswordAnywhere is ok like but like some have mentioned really not the best in security.

They are ever so slightly different models. Lastpass hosts your data so they can have the extension work without any additional application installed. We don't host your data and as a result we need to have some additional software to make it all work.

There are tradeoffs either way you go. We certainly won't argue that 1Password is perfect for everyone. We try to do what we can to make it appeal to the most people we can but certainly understand when it doesn't fit someone's way of working.

In these types of situations we usually try to figure out what it is that's not working and maybe find some solutions. Unfortunately this one is a bit too complex to come up with a solution immediately. I'll pass this along to our development team and maybe we can look into it for a more long term solution. It's certainly not something we'll have anything for near term as there are no simple fixes for this. 1PasswordAnywhere is a fine solution for now though, just be aware of where you use it. I'd say at work you're fine.

 

[simonsayz]

Lastpass for so many years

I've been with lastpass for probably the last 10 years. It serves me well!

 

[randolorian]

iCloud Keychain

I've happily used LastPass for a number of years, but I recently started using iCloud Keychain and have come to prefer it. If you use only Apple devices, it's a clean and simple solution.

 

[solaris]

I am a recent convert from Apple Keychain to LastPass, and loving it so far.
Especially like that there is an actual GUI on iOS to see, copy, create and edit password, secure notes and more. Never tried 1Password though, so don't know how they compare.

 

[AndroidNmac]

Do you guys store your bank account logins too?

Been using lastpass and enjoy it, but still reluctant to save that info

 

[steve62388]

Do you guys store your bank account logins too?

Been using lastpass and enjoy it, but still reluctant to save that info

I do, but then I use 1Password and no data is sent to Agilebits it's all stored locally. Unlike Lastpass.

 

[wannabelean]

I like mSecure

 

[flynz4]

I do, but then I use 1Password and no data is sent to Agilebits it's all stored locally. Unlike Lastpass.

I do the same. I am very comfortable with 1Password security since the database remains local to my machine. Any sharing that I do across machines is with 100% encrypted data that has been encrypted locally.

I am not saying that Lastpass is insecure, but I do know that the local database is one element that separates 1Password and Lastpass.

In any case... having long, complex, unique passwords is the #1 step to security, and without a password manager like either 1P or LP, I believe that it is unworkable.

Finally... setting up a password manager initially is a fair amount of work. The primary reason is because each site uses a different method to modify passwords and "special questions". Those who do not use a password manager probably underestimate how many sites they use. Given the size of this effort... there is no way that I would choose a password manager that does not have an established and committed user base who trusts their product. For me, the threshold of such a company would be limited to 1Password or LastPass. I started with 1Password, I suspect that it is #1, and I have zero interest in changing. It is a fantastic program.

/Jim

 

[glenthompson]

Do you guys store your bank account logins too?

Been using lastpass and enjoy it, but still reluctant to save that info

I store pretty much all my personal information in 1Password. All my credit cards, bank accounts, logins, memberships, rewards cards, driver's licenses, etc. Thanks to a tip from Kyle, I tagged anything in my wallet so if I lose it I can see what is there and all the numbers to call to report it lost/stolen.

Trying to remember my 16+ character bank logins would be rather difficult without 1Password. Any site where I need good security has very long, complex passwords. I'm not so picky about discussion sites like macrumors.

The passwords consider the most important and need to be memorized are 1Password, Dropbox, and icloud. With those passwords I can get to or reset any other password.

 

[MacHead84]

I use both.

 

[snipper]

1Password 5 payed update

I've been quite happy with 1Password for a few years (even though, despite the fancy looks, they still don't support rich text).

However, quite to my surprise, today I got an alert that my 'trial is expired' and I should update.. Long story short it turns out that they let original 1Password 3 licensees update to 1PW 5 first. Then, after a month or so, the application tells you it's a payed update. It immediately starts nagging you to update every n minutes. This kind of 'marketing technique' does not feel fair or right to me.

So be warned that not only it's by far the most expensive compared to other password managers, but on top of that they also have quite a fast and expensive ($25) update regime, not to mention a marketing that I frown upon.

 

[steve62388]

I've been quite happy with 1Password for a few years (even though, despite the fancy looks, they still don't support rich text).

However, quite to my surprise, today I got an alert that my 'trial is expired' and I should update.. Long story short it turns out that they let original 1Password 3 licensees update to 1PW 5 first. Then, after a month or so, the application tells you it's a payed update. It immediately starts nagging you to update every n minutes. This kind of 'marketing technique' does not feel fair or right to me.

So be warned that not only it's by far the most expensive compared to other password managers, but on top of that they also have quite a fast and expensive ($25) update regime, not to mention a marketing that I frown upon.

1Password 3 was released on the 19th of November 2010, so you may have got as much as four and a bit years of use. Lastpass charges $12 per year. So in the scheme of things I don't think you can really call it 'by far the most expensive compared to other password managers'.

 

[redbeard20]

I've been a happy user of Clipperz (clipperz.is) for the past couple of years. Like LastPass, stores in the cloud, but it's open source and free as in beer. Takes donations.

 

[AGKyle]

1Password 3 was released on the 19th of November 2010, so you may have got as much as four and a bit years of use. Lastpass charges $12 per year. So in the scheme of things I don't think you can really call it 'by far the most expensive compared to other password managers'.

November 19th 2009

https://app-updates.agilebits.com/product_history/OPM3#30300

Looks like we included 62 free updates to version 3 as well.

 

[Scuba629]

I just got my discount code for purchasing 1Password on the App Store! Should I just buy the Windows version or the Mac + PC bundle? Maybe a dumb question but it might also entitle me to more free upgrades?(Version 5 for windows or Mac 6)

Also for my work PC I can use 1PasswordAnywhere, but that means I need to disable 2FA for dropbox and make that password somewhat easy to remember. My question is does this decrease my security? I would need to do this at least once every morning as I need to login to my e-mail, and other sites at least once.

----------

Also how can I move all my stuff from LastPass to 1Password? Is there an easy method?

 

[snipper]

You can adjust the 1PW preferences in terms of.. how long it stays unlocked. You can disable lock after sleep / screen saver is activated / fast user switching.

As for the updates / paid updates … I bought (1PW3) in November 2013 and had to pay for the 1PW4 update within a year. However, then they changed policy to: Buy now and get one update for free.

Correction: The policy is: Major updates require an update license.

Since updates are half the full price. Assuming there will be no major update this year, I'll be on a $25+ yearly average for 3 year, not counting the additional $10 iOS app. More then I expected.