KeePassXC - KeePass Cross-Platform Community Edition

Discussion in 'other software & services' started by guest, Jul 6, 2017.

  1. guest

    guest Guest

    KeePassXC is a community fork of KeePassX, a native cross-platform port of KeePass Password Safe, with the goal to extend and improve it with new features and bugfixes to provide a feature-rich, fully cross-platform and modern open-source password manager.

    Website: https://keepassxc.org/
    Project repository is available on Github: https://github.com/keepassxreboot/keepassxc

    Features of KeePassXC:
    • Auto-Type on all three major platforms (Linux, Windows, macOS)
    • Twofish encryption
    • YubiKey challenge-response support
    • TOTP generation
    • CSV import
    • Command line interface
    • DEP and ASLR hardening
    • Stand-alone password and passphrase generator
    • Password strength meter
    • Using website favicons as entry icons
    • Merging of databases
    • Automatic reload when the database was changed externally
    • KeePassHTTP support for use with PassIFox in Mozilla Firefox, chromeIPass in Google Chrome and Chromium and passafari in Safari.
    • Many bug fixes
    Database format:
    KeePassXC is available for Windows, Linux and macOS

    Current version: v2.2.0 (June 26, 2017)
    Announcement
    Download
    https://keepassxc.org/blog/2017-06-26-2.2.0-released/
    We are very excited to announce the release of KeePassXC 2.2.0! We have worked long and hard to bring you lots of new features and bug fixes in a well-rounded release. Among the top highlights of this release are
    • YubiKey challenge-response support for strengthening your database encryption key
    • a generator for time-based one-time passwords (TOTP)
    • a diceware password generator
    • a command line interface (CLI)
    • CSV database import
    • true portable mode with the config file residing in the same directory as the application
    • automatic database locking when you lock your desktop session
    Besides these highlights, KeePassXC ships with many other new features and improvement. With 167 closed issue reports, 2.2.0 is by far the biggest KeePassXC release so far and we thank all contributors who have made this amazing release possible.

    Full Changelog:
    • Added YubiKey 2FA integration for unlocking databases [#127]
    • Added TOTP support [#519]
    • Added CSV import tool [#146, #490]
    • Added KeePassXC CLI tool [#254]
    • Added diceware password generator [#373]
    • Added support for entry references [#370, #378]
    • Added support for Twofish encryption [#167]
    • Enabled DEP and ASLR for in-memory protection [#371]
    • Enabled single instance mode [#510]
    • Enabled portable mode [#645]
    • Enabled database lock on screensaver and session lock [#545]
    • Redesigned welcome screen with common features and recent databases [#292]
    • Multiple updates to search behavior [#168, #213, #374, #471, #603, #654]
    • Added auto-type fields {CLEARFIELD}, {SPACE}, {{}, {}} [#267, #427, #480]
    • Fixed auto-type errors on Linux [#550]
    • Prompt user prior to executing a cmd:// URL [#235]
    • Entry attributes can be protected (hidden) [#220]
    • Added extended ascii to password generator [#538]
    • Added new database icon to toolbar [#289]
    • Added context menu entry to empty recycle bin in databases [#520]
    • Added “apply” button to entry and group edit windows [#624]
    • Added macOS tray icon and enabled minimize on close [#583]
    • Fixed issues with unclean shutdowns [#170, #580]
    • Changed keyboard shortcut to create new database to CTRL+SHIFT+N [#515]
    • Compare window title to entry URLs [#556]
    • Implemented inline error messages [#162]
    • Ignore group expansion and other minor changes when making database “dirty” [#464]
    • Updated license and copyright information on souce files [#632]
    • Added contributors list to about dialog [#629]
     
  2. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    11,126
    Location:
    U.S.A. (South)
    THANKS!!
     
  3. summerheat

    summerheat Registered Member

    Joined:
    May 16, 2015
    Posts:
    2,199
    And what's the advantage of using KeePassXC over KeePass?
     
  4. Cache

    Cache Registered Member

    Joined:
    May 20, 2016
    Posts:
    445
    Location:
    Mercia
  5. oZone

    oZone Registered Member

    Joined:
    Jan 18, 2017
    Posts:
    33
    Location:
    Earth
  6. summerheat

    summerheat Registered Member

    Joined:
    May 16, 2015
    Posts:
    2,199
    Well, KeePass runs well here on Linux using Mono. I don't know about macOS, though.
     
  7. guest

    guest Guest

    For example there is no dependency on Microsoft .NET and it runs natively on all platforms.
    Or, if you are using different platforms and prefer to have a native look and feel, KeePassXC might be a choice.
    KeePass can be run on macOS but there can be some issues, which can be seen in the sourceforge-thread.
    I guess with using of KeePassXC on a macOS there will be less problems, because it runs natively on the platform ("it can be run on Windows, Mac and Linux devices natively, as packages for all three operating systems are provided.")
     
  8. guest

    guest Guest

    So the features are the same?
     
  9. Robin A.

    Robin A. Registered Member

    Joined:
    Feb 25, 2006
    Posts:
    2,557
    Do these forks run on Android? KeePass does.
     
  10. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    11,126
    Location:
    U.S.A. (South)
    KeePassXC just won over another one.

    The password generator is not so shabby either, but while it may not be on the scale of an L517 or PWGen but I often find myself always having to fine tune what they come up with.
     
  11. ExtremeGamerBR

    ExtremeGamerBR Registered Member

    Joined:
    Aug 3, 2010
    Posts:
    1,351
    In their website appears that you can only download MAC, Linux and Windows versions.

    But, I think that you can open your database on Android with your app, since they both can open the same KDBX (but KeePassXC can't open KDBX4, standard since KeePass 2.35) database.

    This limitation is what is keeping me away from KeePassXC.

     
  12. summerheat

    summerheat Registered Member

    Joined:
    May 16, 2015
    Posts:
    2,199
    Okay, I'm trying it right now on Fedora 25. Not bad at first glance ;)

    Yes, but they will add this certainly before long. Besides, using AES is definitely not insecure to the best of our knowledge. In any case you should click the "1 Second Delay" button to increase the number of iterations, and you're free to increase it manually, of course.
     
  13. Baldrick

    Baldrick Registered Member

    Joined:
    May 11, 2002
    Posts:
    2,674
    Location:
    South Wales, UK
    Yes, not bad at all. Have used KeePass from early v1 and I am liking what I am seeing. ;)
     
  14. ExtremeGamerBR

    ExtremeGamerBR Registered Member

    Joined:
    Aug 3, 2010
    Posts:
    1,351
    Of course. I'm using ChaCha20 and Argon2 for the moment. So, for now, I will not change what is working well here.

    But, as they implement KDBX4, I will test it for sure.
     
  15. Carver

    Carver Registered Member

    Joined:
    Feb 5, 2006
    Posts:
    1,910
    Location:
    USA
    I used KeePass v1 for a long time now I switched to KeePass v2
     
  16. summerheat

    summerheat Registered Member

    Joined:
    May 16, 2015
    Posts:
    2,199
    FWIW, KeePassXC doesn't offer Two-Channel Auto-Type Obfuscation. It's on the wishlist but one of the KeePassXC authors thinks it's useless. I think that's a bit exaggerated - it can't protect against all types of malware but against certain types of keyloggers. That said I don't think that I really need it on Linux ;)
     
  17. guest

    guest Guest

    KeePassXC v2.2.1 Released (October 2, 2017)
    Download
     
  18. RockLobster

    RockLobster Registered Member

    Joined:
    Nov 8, 2007
    Posts:
    1,812
    In the first post it says KeypassXC uses two fish encryption. Then below that in the same post it says the password database is encrypted with AES 256 so which is it.
     
  19. summerheat

    summerheat Registered Member

    Joined:
    May 16, 2015
    Posts:
    2,199
    It uses AES Rijndael by default but supports also Twofish (contrary to KeePass and KeePassX). Having said that I still see no reason why I should switch from KeePass to KeePassXC (even on Linux with mono).
     
  20. RockLobster

    RockLobster Registered Member

    Joined:
    Nov 8, 2007
    Posts:
    1,812
    Well, I kinda thought that too, but I recently read a long discussion thread about AES and it seems the encryption experts are not at all comfortable with AES 256.
    They believe AES 128 is ok.
    They said the standard 10 rounds is enough to safely diffuse the 128 bit key but not really enough for the much larger 256 bit key. That's not to say twofish is any better, I'm really not sure, I would use serpent if I had the option.

    It's a blog piece Bruce Schneier wrote a few years ago, the long discussion in the comments below it make for good reading
    https://www.schneier.com/blog/archives/2009/07/another_new_aes.html
     
    Last edited: Oct 3, 2017
  21. summerheat

    summerheat Registered Member

    Joined:
    May 16, 2015
    Posts:
    2,199
    I'm not a crypto expert - but on Wikipedia the security of the various AES variants is discusssed in detail (Schneiers paper/post is also mentioned), and the bottom line is that they are still secure.

    Noteworthy: Keepass 2.x also supports ChaCha20 (and with plugins also other algorithms like Twofish and Serpent) and, as a protection against dictionary attacks, Argon2. Both are not (yet) supported by KeePassX(C).
     
  22. guest

    guest Guest

    KeePassXC v2.2.2 Released (October 22, 2017)
    Download
     
  23. guest

    guest Guest

    KeePassXC v2.2.3 Released (December 12, 2017)
    no Accouncement yet
    Download
     
    Last edited by a moderator: Dec 14, 2017
  24. guest

    guest Guest

    KeePassXC v2.2.4 Released (December 14, 2017)
    Announcement
    Download
     
  25. Carver

    Carver Registered Member

    Joined:
    Feb 5, 2006
    Posts:
    1,910
    Location:
    USA
    I am putting portable KeePassXC on a flash drive and transfer my passwords copy and pasting them, as the databases don't seem to be compatible. Then replace my present keepass and database.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.