Google Authenticator had been worryingly opaque to me until then - you scan a QR code and then somehow you get TOTP codes? - and having gone through a phone number change recently, I felt especially aware and uncomfortable about having 2FA for many important accounts tied to one fairly fragile, fairly mis-placeable electronic device (not to mention in an app controlled by Google).įiguring out how to use TOTP on KeePass was the nudge I needed to read up on how TOTP works, and of course it was quite simple. Went digging a little and realized that there was enough support that I felt completely comfortable jumping ship away from Google Authenticator. A few months ago I realized that both of my clients showed a TOTP option. My stack is KeePassXC on computers, Keepass2android on mobile and Dropbox for syncing. I see nobody's mentioned TOTP support yet. The recommended way to handle this is quite convoluted. The most common sync solution is dropbox because that is the only mainstream cloud offering with first party support for linux, which is fine, but can still cause conflicts. It is not enough to set up a LAN folder your solution needs to be able to resolve conflicts if you ever use more than one device simultaneously, otherwise you run the risk of losing changes. I had random disconnections from keepass and many autofill failures.įinally, you get to syncing, and the friction is bigger than you expect. To get a browser plugin, you have to pick from a disturbingly long list, each with pros and cons, each requiring a few config steps, and none of which work as well as the cloud competition. Instead the main screen has "find", "find entries" and "search" buttons which are all slightly different despite sounding completely redundant. There is no "generate password" button on the main application screen despite that being the #2 use for a password manager behind autofilling.
but I had to manually configure it to import from lastpass. The project is constantly evolving.I'm willing to tolerate a little friction to setup syncing, but keepass has friction at almost every level. You can donate or buy the pro version for better service and a quick development of features you want: Code written in native languages (Kotlin / Java / JNI / C). One-time password management (HOTP / TOTP) for two-factor authentication (2FA). Biometric recognition for fast unlocking (fingerprint / face unlock / …). Allows opening and copying URI / URL fields quickly. Compatible with the majority of alternative programs (KeePass, KeePassX, KeePassXC, …). kdbx files (version 1 to 4) with AES - Twofish - ChaCha20 - Argon2 algorithm. Create database files / entries and groups. Multi-format KeePass password manager, the app allows saving and using passwords, keys and digital identities in a secure way, by integrating the Android design standards.
0 kommentar(er)
