I keep reading reviews about this Sourceforge Project and was thinking of
buying a cheap USB stick for it. Between the forums and other various
sites, these passwords add up. Someone once told me that he uses only one
password for everything he's not concerned about (forums, etc), and another
one for his private info. Personally, I find that to be the easy, non-
secure route.

Keepass is here - any comments?

http://keepass.info/


Anyone have long-term experience with it?

On Jun 1, 9:57 am, h...@hmmm.org wrote:
> I keep reading reviews about this Sourceforge Project and was thinking of
> buying a cheap USB stick for it. Between the forums and other various
> sites, these passwords add up. Someone once told me that he uses only one
> password for everything he's not concerned about (forums, etc), and another
> one for his private info. Personally, I find that to be the easy, non-
> secure route.
>
> Keepass is here - any comments?
>
> http://keepass.info/
>
> Anyone have long-term experience with it?

it just adds ONE more password to your list.. you need a password to
open the password manager... ironic or assinine, I'm not sure...

the concept of using one generic and one secure password is what i've
done for years.... I've went to passphrases instead of passwords....

These are possibly weak if someone knows enough about you....
"I like chocolate the best"
"My dog is yellow and white"
"My wife has big boobs"
"My name is Bart"

"My password is too long for me to remember, but a sentence is easier"
- was a password for a bank account I had....

"We're off to see the wizard, the wonderful wizard of oz" - is one I
saw once while shoulder surfing....

(E-Mail Removed) wrote:

> http://keepass.info/
>
> Anyone have long-term experience with it?

Seems likely. (This is the second year KeePass has been on the
Pricelessware list.)
http://www.pricelesswarehome.org/200...TY.php#3995-PW

Susan
--
Posted to alt.comp.freeware
Search alt.comp.freeware (or read it online):
http://www.google.com/advanced_group....comp.freeware
Pricelessware & ACF: http://www.pricelesswarehome.org
Pricelessware: http://www.pricelessware.org (not maintained)

RedForeman <(E-Mail Removed)> wrote:

>On Jun 1, 9:57 am, h...@hmmm.org wrote:
>> I keep reading reviews about this Sourceforge Project and was thinking of
>> buying a cheap USB stick for it. Between the forums and other various
>> sites, these passwords add up. Someone once told me that he uses only one
>> password for everything he's not concerned about (forums, etc), and another
>> one for his private info. Personally, I find that to be the easy, non-
>> secure route.
>>
>> Keepass is here - any comments?
>>
>> http://keepass.info/
>>
>> Anyone have long-term experience with it?
>
>it just adds ONE more password to your list.. you need a password to
>open the password manager... ironic or assinine, I'm not sure...

Who cares how many passwords are on your 'list'?

I have about 100 passwords in Keepass and most of them I have never even
seen let alone tried to remember.

There is a limited but functional version of KeePass for Windows PDAs which
gives me access away from computers.

For the OP my long-term experience with KeePass is - no problem. Read the
Betanews reviews http://fileforum.betanews.com/review/1086630189/1/view for
more opinion.



--

Susan Bugher <(E-Mail Removed)> wrote in news:5caouoF2v3738U1
@mid.individual.net:

> (E-Mail Removed) wrote:
>
>> http://keepass.info/
>>
>> Anyone have long-term experience with it?
>
> Seems likely. (This is the second year KeePass has been on the
> Pricelessware list.)
> http://www.pricelesswarehome.org/200...TY.php#3995-PW
>
> Susan


How about Password Safe?

http://passwordsafe.sourceforge.net/

(E-Mail Removed) wrote:
> Susan Bugher <(E-Mail Removed)> wrote in news:5caouoF2v3738U1
> @mid.individual.net:
>>(E-Mail Removed) wrote:

>>>http://keepass.info/
>>>
>>>Anyone have long-term experience with it?

>>Seems likely. (This is the second year KeePass has been on the
>>Pricelessware list.)
>>http://www.pricelesswarehome.org/200...TY.php#3995-PW

> How about Password Safe?
> http://passwordsafe.sourceforge.net/

It's been on the PL list almost *forever* (PL2007 PL2005 PL2004 PL2003
PL2002 PL2001).
http://www.pricelesswarehome.org/acf...php#2.50Viewer

FYI. . .
The index of PL2007 programs is here:
http://www.pricelesswarehome.org/200...ogramIndex.php
The Cumulative Pricelessware List is here:
http://www.pricelesswarehome.org/2007/CumulativePL.php

Susan
--
Posted to alt.comp.freeware
Search alt.comp.freeware (or read it online):
http://www.google.com/advanced_group....comp.freeware
Pricelessware & ACF: http://www.pricelesswarehome.org
Pricelessware: http://www.pricelessware.org (not maintained)

(E-Mail Removed) wrote in
news:V5OdnaOtNrZOuP3bnZ2dnUVZ_s-(E-Mail Removed):

> I keep reading reviews about this Sourceforge Project and was thinking
> of buying a cheap USB stick for it. Between the forums and other
> various sites, these passwords add up. Someone once told me that he
> uses only one password for everything he's not concerned about
> (forums, etc), and another one for his private info. Personally, I
> find that to be the easy, non- secure route.
>
> Keepass is here - any comments?
>
> http://keepass.info/
>
>
> Anyone have long-term experience with it?

I really like keepass. The other one I've used is "password safe", also on
sourceforge. From what I've heard people have less trouble with keepass
than with password safe. I'm not sure if the latest version fixes those
bugs. Always keep a good backup of your databases!

I agree that strong passwords should be used for everything, and that these
are hard to remember. So having just one, very strong, password for my
password safe software is a good thing for me.

(E-Mail Removed) pisze:
> I keep reading reviews about this Sourceforge Project and was thinking of
> buying a cheap USB stick for it. Between the forums and other various
> sites, these passwords add up. Someone once told me that he uses only one
> password for everything he's not concerned about (forums, etc), and another
> one for his private info. Personally, I find that to be the easy, non-
> secure route.
>
> Keepass is here - any comments?
>
> http://keepass.info/
>
>
> Anyone have long-term experience with it?

I use it only for 2 months but it is great tool.
For better security use key file.

--
--==Kamikazee==--
http://kamikaze.mp.waw.pl/

(E-Mail Removed) wrote in
news:V5OdnaOtNrZOuP3bnZ2dnUVZ_s-(E-Mail Removed):

> I keep reading reviews about this Sourceforge Project and was thinking
> of buying a cheap USB stick for it. Between the forums and other
> various sites, these passwords add up. Someone once told me that he
> uses only one password for everything he's not concerned about
> (forums, etc), and another one for his private info. Personally, I
> find that to be the easy, non- secure route.
>
> Keepass is here - any comments?
>
> http://keepass.info/
>
>
> Anyone have long-term experience with it?
>

I've been a fan of passkeeper myself:

PassKeeper v1.2


--
Dustin Cook
Author of BugHunter - MalWare Removal Tool - v2.2c
email: (E-Mail Removed)vethis
web..: http://bughunter.it-mate.co.uk
Pad..: http://bughunter.it-mate.co.uk/pad.xml

<(E-Mail Removed)> wrote in message
news:V5OdnaOtNrZOuP3bnZ2dnUVZ_s-(E-Mail Removed)...
>I keep reading reviews about this Sourceforge Project and was thinking
>of
> buying a cheap USB stick for it. Between the forums and other various
> sites, these passwords add up. Someone once told me that he uses only
> one
> password for everything he's not concerned about (forums, etc), and
> another
> one for his private info. Personally, I find that to be the easy,
> non-
> secure route.
>
> Keepass is here - any comments?
>
> http://keepass.info/
>
>
> Anyone have long-term experience with it?


If you actually use strong passwords, the type that look scrambled and
contain no word strings, then these type of utilities are handy. Who
wants to remember dr4.utWW_xR9.4.5yyQ$v9d0Tx? However, I use a scheme
that lets me use a unique password at every site without having to save
it in some utility. By using a scheme then you can always figure out
what you would've used at that site.

As an example, use a couple of nonadjacent digits from your birthyear,
the first or last 2 initials of you 3-character initials of your first,
last, and middle name, and the first or last 3 to 5 characters of the
domain (if the domain is shorter than what you decide for the standard
length then include the TLD part of the domain, too, like you use 4
character but at buy.com you would use buyc or ycom). Then decide on
the order of these substrings which is always the same, like
<LINITS2><fdomain4><midbyear2> (which you can record as your hint to
remind you although if you use the same scheme then you don't need to
have hints). In this case, the scheme is the last 2 initials of your
3-initial name (and both are capitalized as indicated in the hint),
first 4 characters of the domain name, and the middle 2 digits of your
4-digit birthyear. Every site would have a different and unique
password. I usually don't include special characters (-,_,$,.,etc.)
because too many sites don't let you use them. Although longer
passwords are better, many sites don't accept more than 8 characters but
many want 6, 7, or more so 8 usually works most places. If one site
wants longer passwords then use one where the hint is
<LINITS3><fdomain5><byear4rev> (where the last is the reverse order of
the digits in your 4-year birthyear). Just come up with a scheme that
you can remember but generates garbage looking passwords. Eventually
you will be without your USB stick with the keepass on it, the stick
goes bad, the computer you want to use doesn't have USB ports or they
have been deliberately disabled, the drive crashes and takes the
database file with it that you haven't backed up yet, and so on. A
scheme in your head that is fixed but provides variable results goes
everywhere you do. Generating strong passwords doesn't mean that you
can't use a common scheme to produce them all.

One reason I started doing this was, well, I didn't bother checking
around for such software. When I tried it then I realized that the
software, USB stick, or whatnot might not be with me at the time. I
also used to use Password Safe (also at sourceforge.net) and thought the
horror stories about the database getting corrupted (by Password Safe
itself) or file system corruption or drive defects and no backups was
just peculiar to some users - until I lost my database TWICE. I'm not
going to waste time looking for backups to restore an old copy of the
database which might not have my most recent stored password when I
immediately need to login into an account to transfer funds NOW or do
something immediate. You might have a thumb drive on your keychain and
tote around a cellphone but that doesn't preclude them from getting lost
or breaking. In fact, losing files on thumb drives isn't really an
unusual problem.