Keep Passwords Safe with Open Source Password Manager – KeePass Password Safe
Attention! Do have the same password for every online account? If your answer is yes, then your account might be at risk of an attack. Consider changing your passwords immediately for each of your online accounts.
We know, the question which arises in your mind is how to remember them. Setting up one password for each account is not difficult. But, where the problem comes is remembering them. Today, technology has grown a lot. So, why don’t we use that (password saver) to maintain one password for each of our online accounts? Thus we can prevent online attacks.
Interested? Keep reading.
What is a Password Safe or Password Saver?
Just use a small piece of software that can remember all of your complex passwords and protect it with one password (single complex master password). Isn’t it simple?
The tool or piece of software is we are going to discuss is KeePass Password Safe.
What is KeePass?
It is a best free password manager app that helps you manage passwords in a secure way.
What is the cost of KeePass?
It is an open source password manager software distributed under the General Public License (GPL). This means the end user has the right to run, share and modify the software.
KeePass vs KeePass2. Which KeePass version to use?
This best free password manager app is currently available in two different editions: 1.x and 2.x. They basically differ in portability and functionality.
KeePass 1.x: Runs on all Windows operating systems with Graphics Device Interface (GDI) (includes Windows XP and higher).
KeePass 2.x: Runs on all Windows systems with Microsoft .NET Framework 2.0 or higher (includes Windows Vista and higher). Also, other operating systems like Linux, Mac OS X, etc. with Mono.
Why should you go for KeePass 2.x?
By looking at the features offered by KeePass 2.x, you should definitely prefer it. Some of the features included in 2.x edition are Full Unicode Support, Windows User Account, One-Time Password, Challenge-Response, Smart Card (RFID / NFC), Certificate, Entry History, Find Duplicate/Similar Passwords, Synchronization,… the list continues. To compare the both editions click here.
What is KeePass Professional?
At the initial stages of 2.x edition development (the period no public alpha version available), it was called as “KeePass Professional”.
Does KeePass Professional Cost?
KeePass Professional is free as Classic.
Why there is KeePass Classic vs Professional?
If KeePass Professional is free, then why it’s been named separately? After the development of 2.x edition, the existing edition was renamed to “KeePass Classic”. The naming convention was given with respect to future development. Also, to highlight that 2.x is the successor of 1.x. But, that doesn’t mean 1.x version is dead.
KeePass installer vs KeePass portable:
KeePass tutorial: How to use KeePass Password Safe?
Below short tutorial should help you setup a new password database or password wallet.
KeePass password store will store all of your passwords in single a database. To create one,
Step 1: Installation
Download the software from http://keepass.info/download.html and install.
Step 2: Create the Initial Password Database
Run Application
Click File -> New
Create Composite Master Key.
A window will pop up, prompting you to set a master password and/or key file.
Image: KeePass
The database will be encrypted with the one password you enter in above step.
This is the only one password you’ll ever have to remember from now on.
Make sure it is long enough and a combination of mixed characters.
Remember. If someone somehow manages to get your database file and guesses the password, they could have access to all your passwords stored in the database.
Step 3: Adding a New Entry
Image: KeePass
To add an account:
Select Edit -> Add Entry, or just click the icon.
Enter the following: (for each specific web site)
User Name: Your User name
Password: Your Password
Repeat: Your Password again
URL: The address of the web page
Tip: The easy way you can get the URL is to:
Go to the website in your browser
Right click on the address bar
Select Copy.
Then paste it into the URL field of the best password app.
Step 4: Testing KeePass Password Safe
Image: KeePass
To test the configuration:
Right-Click on the entry
Select URL(s) -> Open
Alternatively, double-click on the URL cell for the entry. The app will open the KeePass Password Safe Help Center Test Form on your default web browser.
How to use KeePass on multiple computers?
Installing KeePass Portable
Installing KeePass on a portable drive is easy. Once you install a copy on a USB drive, plug this USB drive into any PC you are using. Now, access all of your personal websites, accounts, and passwords!
Installing Portable KeePass
Download the zip archive containing the software
Plug in your USB drive
Create a new folder and rename it to KeePass
Unzip the contents of zip archive into KeePass folder on the USB drive.
Tip: Don’t have an unzip utility? Simply double-click on the archive to open it. Select and copy the contents, then past into KeePass folder.
Now, locate to the KeePass Password Safe database created on your PC (by default it will be located under Libraries -> Documents)
Copy this database file to KeePass folder on the USB drive.
Using Portable KeePass
Navigate to the KeePass folder on USB drive
Double-Click on KeePass.exe
The first time you launch portable KeePass password manager app, it may not find the database.
Go to File -> Open menu
Navigate to KeePass folder on the USB drive
Select and open the database
Tip: For faster access, place a shortcut to keePass.exe in the root folder on the USB drive.
What is KeePass Password Safe?
KeePass Password Safe is a software that stores passwords securely in an encrypted file or a database. This database is locked with a single master password, a key file and/or the current Windows account details.
What is a KeePass composite key?
To open a database, all key sources (master password, key file, and current Windows account details) are required. These key sources all together form a Composite Master Key.
KeePass does not support login to the database by using alternative keys, i.e. it’s not possible to open your database using a password or a key file. Use both at once, but not interchangeably.
KeePass key file best practices
Master Passwords
If you choose a master password to login to your database, this is the only password or passphrase you have to remember.
Is KeePass safe?
KeePass features password protection against attacks on the master password. Likewise brute-force and dictionary. Read KeePass security information page for more about this.
KeePass master password recovery
Remember: If you be unable to remember this master password, all other passwords stored in the database are lost, too. There is no backdoor or a key which can open your databases. In short, there is no way of recovering your passwords.
Key Files
The database can also be locked using a key file. With Key Files, you don’t even have to recall lengthy, complicated master passphrase.
What is a key file KeePass?
A key file is nothing but a file with a master password in it. Key files are usually stronger than master passwords. This is because the key can be a lot more complicated. However, it’s also harder to keep them secret.
Advantages:
A key file can be used as an alternative of a password, or in addition to a password (and the Windows user account in KeePass 2.x).
A key file can be any file you choose. Although you should choose one with plenty of random data.
Disadvantages:
A key file must not be modified. Modifying a key file will stop you opening the database. In case if you want to use a different key file, you can change the master key and use a new/different key file.
Key files must be backed up. Else you won’t be able to login to the database after a hard disk crash/rebuild. It’s similar to forgetting the master password. There is no back door.
Do not backup the key file to the same location where the database is stored. Use a different directory or disk.
File Location: Choosing a single file out of thousands present on your hard disk basically doesn’t increase password security. Because it’s not too hard for malware/attackers to find out the correct file. For example observing the last access file timings, recently used files list, malware scanner logs, etc. can be used to identify the key file. Trying to keep the key file location secret is password security but not really effective.
File Type and Existing Files. KeePass can generate key files. However, you can use any other, an already existing file like JPG image, DOC document, etc.
Can’t remember KeePass password? Use option Windows User Account
KeePass 2.x Only
Only KeePass 2.x and higher supports encrypting databases using Windows user account credentials. KeePass 1.x does not support.
KeePass can make the database (.kdbx) dependent on the current Windows user account. But, you have to enable this option. Only you can open the database when you are logged in as the same Windows user while creating the database.
Advantages:
After changing your password, you can still open your KeePass database.
Changing the Windows user account password doesn’t affect the KeePass database.
But, when resetting the password to a new one, access is not possible anymore. This is because the user’s Data Protection API (DPAPI) keys are lost.
But there are exceptions. If the user is in a domain, Windows can retrieve the user’s DPAPI keys from a domain controller, or a home user can use a previously created Password Reset Disk.
Disadvantages:
If your Windows user account gets deleted, no way you can access your KeePass database.
Also, if your computer hard disk gets damaged, it is not enough to just create a new Windows account on the new installation with the same user name and password.
So, it is highly recommended to think twice before enabling this option.
KeePass auto login
The another beautiful feature is “Auto-Type” functionality. This feature allows users to define a sequence of keypresses. The simulated key presses can be sent to any other open window of user choice (browser windows, login dialogs …), which allows automatic login.
By default, the sent keystroke sequence contains {USERNAME}{TAB}{PASSWORD}{ENTER}, i.e. first it sends the user name of the selected entry, then presses the Tab key, then enters the password of the entry and finally presses the Enter key.
How to define an Auto-Type sequence in KeePass 1.x?
Write a single line sequence into the notes field of the entry, prefixed with “Auto-Type:”
Your notes should look something like this:
Auto-Type: {USERNAME}{TAB}{TAB}Some fixed string{TAB}{PASSWORD}{ENTER}
Things to remember while defining auto-type sequence:
An auto-type sequence cannot be defined using two or more lines.
If two or more auto-type sequences are defined, the first one will be used.
How to define an Auto-Type sequence in KeePass 2.x?
Auto-Type can be configured for each individual entry. To configure the Auto-Type,
Go to tab page in the entry dialog
Select an entry –> Edit Entry
Here you can specify a default sequence and/or customize specific window/sequence associations.
Backup & Synchronization:
Backup and Synchronize KeePass database (.kdbx file) to cloud by using the following plugins.
KPGoogleSync for Google Drive
KPDataSave to store passwords database files in Dropbox
KeePassOneDriveSync to synchronize multiple local databases with multiple databases stored in OneDrive.
KeePassIPhone to convert KeePass 1.x password databases to iPhone bookmarklets.
KeePass review:
Below are the links to download KeePass (Contributed/Unofficial) on different platforms and their requirements, reviews, etc. The reviews are taken by the time of writing this article and may vary from time to time.
KeePass Password Safe is available on Google Play Store as KeePassDroid with installs 1,000,000 – 5,000,000 and requires Android version 1.5 and up.
KeePass Password Safe is available on Apple Store as Strongbox – KeePass & PwSafe. The password manager app is compatible with iPhone, and iPad.
For KeePass on iPhone download KyPass Companion and MacPass
For Chrome password manager, especially Chromebook – CKP (KeePass integration for Chrome)
Check the other Contributed/Unofficial KeePass Ports here.
Conclusion:
Act. If you are still using the same password for every online account, go ahead and change them immediately. Keep password for every account unique.
Hope you have enjoyed reading the article. If you like the article, share it with your friends/colleagues on social networks. Also, subscribe to our blog/follow us on facebook/twitter for future posts notifications.
Leave a Reply