Password Managers

I am thinking of using a password manager.

Two products seem to be recommended: Keepass or LastPass.

LastPass seems to be far easier to use, but I have difficulty in understanding why people trust a cloud based system with their sensitive information.

My question is Can I trust their cloud?

Thanks

Ps. I use websites that use passwords, I might use it for banking - only if absolutely convinced.

 

See here: https://www.wilderssecurity.com/showthread.php?t=348713

I wouldn't trust anything, but myself, with important passwords. For everything else, LastPass is more than secure enough and its superior usability beats Keepass for me.

 

It is the typical question about the security triangle: Security-Functionality-Usability. Lastpass is more about Functionality-Usability and Keepass is strongly about Security.

 

KeePass http://lifehacker.com/5944969/which-password-manager-is-the-most-secure

 

LastPass is extremely safe. Very convenient.

As a rule never ever use anything other your brain's memory to store very important passwords like for online banking.

 

What about folk whose brains are losing their retention acumen?

 

They could always write down the single important password or passwords in a piece of paper and lock away in a safebox. Drop it in the water of a sea port and bury the key to the safebox under a mango tree in front of the house. And if anybody happen to witness the whole action or part of it, you know what would happen to the witnesses.......

 

same here.

 

Thank you.

Lastpass looks fine for evrything except banking.

 

Anyone use Dashlane yet? Looks pretty nice, I might try it.

 

I have been for a few months. So far no complaints, does what it was meant to. And you have the option to keep your data local, or if you chose to use the sync feature it will be encrypted in the cloud.

 

I trust KeePass with every password I've got.
Either you trust what you use or you don't.
The whole idea of going to a password manager, for me, was to get away from a list of passwords or relying upon my memory.
I have the utmost confidence in KeePass doing what it is designed to do.
The only password I committed to memory is the KeePass master password, and I have a special way of remembering that so my poor brain doesn't get overtaxed.
It doesn't take much, these days.

 

One thing I require from a password manager is that the password database must never leave my computer (encrypted or not). So I am using Keepass.

 

+1

 

You can't go wrong with either option. I prefer LastPass. As far as it being online, it probably isn't any less likely for someone to get a keylogger on your machine and steal your KeePass passwords than it is for them to hack LastPass and get your passwords and decrypt them from there. If someone wants to get you, they will get you.

 

+1

i use a PIM (TreeDBNotes Pro) which i use to encrypt some part of the database.
then i can easily copy and paste passwords whenever i need it.

 

Regarding lastpass, I have heard that this program can function without downloading the plugin for Internet Explorer.

How could one use lastpass without the icon on the page?

Thanks