if they go subscription only
bye bye
and i used it for like...7-8years now
bye bye
and i used it for like...7-8years now
Customer for 9 years here. I remember the last time they pulled an ignorant and arrogant move by removing the ability to sync locally. Tried to force everyone to Dropbox or a similar service. The roar of the users was loud enough we got a separate utility to use for syncing. Wasn't great but when the later release came out, we had WiFi syncing and now that is called WLAN I believe.
Still, they don't seem to have learned not to alienate their customer base.
Not sure why this is news and why everyone is up in arms. 1Password broke this news close to a year and a half ago. They even had a huge thread on this forum about it. Everyone praised it and loved it. Few didn't like it but nothing like it is now.
This click bait posting crap is getting absurd. One site is "concerned" about this or that and literally has no basis for it. For all we know, it's a competitor slinging mud.
I had 1Password local. It was fine, cool, must have bought it at least 3 times because of different platforms. I ponied up the money for 1 yr sub. and couldn't be happier. Do I care if my passwords are in the cloud? No. It's secure. 1Password is a great company and has never had an issue.
All the "cloud is hackable" people whining about this and going to Apple's Keychain - umm, that's in the cloud too. Lol
Calm down people. You don't want it, don't like it - don't buy it.
Sounds about right to me. I'm also cynically investigating a move toward something free and open source, like KeePassX or KeePassXC. I value having my data under my watchful control. Maybe that's antiquated. So be it.Cynical take on why they seem to be discouraging local vaults: it's easier to justify the subscription model if you're providing a 'cloud' based service.
Sounds about right to me. I'm also cynically investigating a move toward something free and open source, like KeePassX or KeePassXC. I value having my data under my watchful control. Maybe that's antiquated. So be it.
1Password certainly has the aesthetic edge. It's beautiful to use on iOS and MacOS.there are a lot of free apps out there but to be honest, there is quite a difference between a good paid ap and the free apps
1Password is very well made and smooth as silk
So before you go looking for another password program, read this:
https://1password.com/files/1Password for Teams White Paper.pdf
Then ask your new password program vendor for their equivalent. Don't be surprised if you don't get anything. You pay for what you get. The above paper will also teach and debunk a lot of what you think you know about Password managers and how they work - some of them are not as secure as you think.
Worked just fine for meHmmm link is dead.
Yes now it does at home on my mac, but on tapatalk on my iPhone it didn't.Worked just fine for me
You're comparing a website hack - which has many constraints in order to remain fast enough to serve tens or hundreds of thousands of hits per second, to a strongly encrypted password database that can quite happily use enough rounds of encryption on the file to take 1 or more seconds to process for unlock by the end user.
These are two entirely different scenarios with totally different attack surfaces and totally different resource constraints.
Comparing a government website hack with a password database hack is like comparing apples to salami.
Sure, if there is malicious javascript on the web site after they have been hacked, and you use the web version to decrypt your passwords then perhaps that is a vector to getting compromised.
My suggestion would be: do not do that. This is why i don't use lastpass.
Use the app. This however does not invalidate the whole concept of cloud synchronised password DBs.
[doublepost=1500382024][/doublepost]
The XKCD method will fall to any reasonably competent and determined attacker (i.e., one who has hacked the website and stolen the password hashes from said site and is running a GPU or say amazon cloud resources against them). Combining random words via dictionary attack is a thing done by any competent attacker these days. the only really strong passwords are entirely randomly generated and say 12-14 characters or longer.
However the biggest thing to avoid is password re-use. Now if you're like the typical person on the internet these days you have hundreds of accounts, and remembering hundreds of unique passwords, even if they are like correct horse battery staple is downright impossible.
So you need to record them somewhere.
And if you're going to record them somewhere, then things like sticky notes are easily stolen or lost. Things like text files on your computer are easily stolen (and neither of those options sync). And then if you ever need to change password it is a complete pain in the rear.
So rather than spend time trying to memorise hundreds of unique passwords or try to keep them accessible via a paper pad that, if lost results in you being screwed, or in an unencrypted file on your PC which is easily stolen.... this is what a password manager is for.
To avoid password re-use, unless you have an eidetic memory, all you're going to end up doing is re-inventing an unencrypted password manager that doesn't sync via notepad, excel or whatever. Or store all your passwords on a single copy of paper that can be stolen or destroyed.
If i need to change a password using a password manager it is a total non issue. I generate a new one, run through the password reset process, sync my database and job done. I didn't know the old password, so no need to bother trying to memorise the new one either. It requires zero additional effort and has almost zero impact on my work day to change a password.
[doublepost=1500382377][/doublepost]
Uh... i have 1password 6.7.2 on this ipad and am syncing to dropbox. I bought it when version 4 was current....
[doublepost=1500382545][/doublepost]
Tags in general are better than folders, though it may require a mindset adjustment.
Why? Because an entity can only be in one folder, but it can have multiple tags.
i.e., i have a a password for say, CNET.
Does it go in my computing folder, my news folder, or some other folder?
with tags, i could tag it "Computing" AND "news" and either tag search would find it.
Yes, this is a mindset change. Yes, this is a change to how you will locate things. But it is more flexible if you are willing to adapt.
I'd be willing to pay the full subscription price if I got the apps for all platforms as the subsciption currently is without the hosted vault requirement. Unfortunately they do not provide this option.Seems cloud based solutions are standard these days. Let's see if they actually do get hacked. Who can blame these companies. You can't sustain a business on the pittance people think they should pay for software.
Actually you can.I'd be willing to pay the full subscription price if I got the apps for all platforms as the subsciption currently is without the hosted vault requirement. Unfortunately they do not provide this option.
Really? Well then I stand corrected. Thank you for the tip. I will look again.Actually you can.
They always had this, but I read on one of the recent updates that it's easier to do now.Really? Well then I stand corrected. Thank you for the tip. I will look again.