• Hey Guest. Check out your NeoGAF Wrapped 2025 results here!

So what's the best password manager?

Status
Not open for further replies.
F

fertygo

Member
And is worth to buy the paid one if I don't have smartphone around me yet (because from what I read functionality behind paid program is mostly for mobile and 2 way authentication)

I do plan to buy new smartphone pretty soon tho.
 
I've been really happy with Lastpass in the year or so I've been using it. I don't know if it's the best but it's worked really well for me.
 
Evernote security and accessibility wise.

You can choose your own form of security.

The best thing out there, bar none.

EDIT: Students can get Evernote Premium free too
 
I use and love LastPass. I've been using it for four or five years and have been very happy with the service since then.

Jarrod38 said:
A piece of paper is the best password manager. Joking aside are these programs really worth it?
Click to expand...

There is no downside to using a password manager. They simultaneously make using your devices more secure and easier.
 
KeePass if you want to be responsible for your own security (or lack thereof). You control where your database is stored. Lotsa people stick it on Dropbox and sync it between devices.

I switched to it from LastPass a few years ago and it really works for me.
 
My vote goes to 1Password. Great apps on iOS and OS X. Got them on sale since they are pricey but worth every penny. And they're Canadian!
 
WedgeX said:
I've always wondered. What happens when these password managers get hacked?
Click to expand...
For lastpass your passwords are encrypted and are only decrypted locally

AES-256 is accepted by the US Government for protecting top secret data. AES is implemented in JavaScript for the LastPass.com website, and in C++ for speed in the Internet Explorer and Firefox plug-ins.

This is important because your sensitive data is always encrypted and decrypted locally on your computer before being synchronized. Your master password never leaves your computer and your key never leaves your computer. No one at LastPass (or anywhere else) can decrypt your data without you giving up your password (we will never ask you for it).

The client-side PBKDF2 yeilds the key that is used by AES256. That does not get sent to us during logins, instead we do an additional round of hashing and that hash is what is sent to us for verification. It's a one-way hash, though, so again we cannot get the key from it nor can we decrypt the data on our end. When you login, that hash is what's sent to verify if you can download your encrypted data.
Click to expand...
 
WedgeX said:
I've always wondered. What happens when these password managers get hacked?
Click to expand...

If they're made right, nothing.

https://lastpass.com/support.php?cmd=showfaq&id=6926

With LastPass, your passwords are encrypted locally on your machine, before they're uploaded to LastPass, at which point those encrypted passwords are encrypted again. I'm not an encryption expert, but the basic explanation is that a hacker would have to know the unique encryption key on your computer, then know the unique encryption key on LastPass's servers, to obtain 1 password.

Your master password, on the other hand, is never kept by LastPass. The drawback to this is if you lose your master password, there is no way to get your account back.

For someone to get access to my LastPass account, they'd have to have the unique email I used for LastPass (one that I've really only used for LastPass and change semi-regularly), plus my ridiculous password, plus my 2-factor authentication key... If someone has done that to get access to my passwords, they've probably kidnapped and tortured me. Not that I want to come off as challenging some hacker (who could probably get 2 out of those 3 with a keylogger on my machine), but generally, I'm confident about the security.
 
Looks like the Evernote Premium I used was only tied to my class because that page doesn't exist anymore.

Either way, Evernote Standard still has tons of security and locally decrypts like Lastpass.
 
Rebel Leader said:
For lastpass your passwords are encrypted and are only decrypted locally
Click to expand...

The Albatross said:
If they're made right, nothing.

https://lastpass.com/support.php?cmd=showfaq&id=6926

With LastPass, your passwords are encrypted locally on your machine, before they're uploaded to LastPass, at which point those encrypted passwords are encrypted again. I'm not an encryption expert, but the basic explanation is that a hacker would have to know the unique encryption key on your computer, then know the unique encryption key on LastPass's servers, to obtain 1 password.

Your master password, on the other hand, is never kept by LastPass. The drawback to this is if you lose your master password, there is no way to get your account back.

For someone to get access to my LastPass account, they'd have to have the unique email I used for LastPass (one that I've really only used for LastPass and change semi-regularly), plus my ridiculous password, plus my 2-factor authentication key... If someone has done that to get access to my passwords, they've probably kidnapped and tortured me. Not that I want to come off as challenging some hacker (who could probably get 2 out of those 3 with a keylogger on my machine), but generally, I'm confident about the security.
Click to expand...

Thanks for the info guys!
 
Worth it even without a smartphone, in my opinion; smartphone support is just icing on the cake.

I personally use 1Password, I can't really offer any points of comparison because it's the only password manage I've used, but I like that it keeps my files local or alternatively on Dropbox. Main thing I want from it right now is Google Drive support so I can wean myself off of Dropbox.
 
Keepass2 which is free and open-source. Using it on Windows, Linux and Android. There's also plugins that enables auto-entry for passwords with Chrome (chromeIPass) and Firefox (KeeFox).
 
Nemesis121 said:
Should have been the first reply, I trust none of these sites to store my password, cause they get hacked too, nothing is hack proof on the internet..
Click to expand...
tbh if you're capable of remembering passwords to 20+ accounts then your passwords are probably not strong enough. I have over 100 saved in LastPass.
 
I tried a bunch of them (1pass, dashlane, enpass, password safe, keepass) after lastpass was acquired by logmein and honestly all of them have something wrong with them. They either dont work as well as lastpass or have some problems like browser integration or poorly performing desktop app.

The only thing that comes close to latpass is stickypassword. They had a sale when the lastpass thing happened so I got a lifetime license for 50$. There are still some things I prefer so much in lastpass (the ease of two factor e.g. + browser integration) but sticky does 99% of what lastpass does. Their desktop app is fairly good but with some bugs here and there.

So if you're ok with lastpass being owned by logmein then there is nothing thats better than it. If not then I'd advise getting stickypassword.
 
I've been using LastPass free version for years and never felt the need to pay for using it on mobile.

On my phone, I just typed in the password for the websites in advance or just use the web version to copy the passwords.
 
I like keypass, it's the only one I've tried and have no reason to try any other. Works fine. It has phone app integration as well.
 
1Password is excellent. I only don't like that I have to pay separately for a Windows version, forcing me to use insecure workarounds to get my passwords on Windows. But using it in iOS and OSX is seamless and awesome.
 
Lastpass since they launched, it's an amazing tool. I think it was a real revolution. Always paid for it too since it's really affordable and just all around amazing.
 
Keypass. It's free, it's a local program but you can store your encrypted database on Dropbox and have it anywhere.

It doesn't autofill shit (which I like, because that can quickly turn into a nightmare) it's just there for when you forget something. It's a security blanket.

I wish the UI was better, but it does what its supposed to 100%.
 
1Password, but it can be a bit pricey if you need to run it on a lot of platforms, unless you're patient enough to wait for sales.
 
Status
Not open for further replies.

Similar threads

Password incorrect error
22
176
Sticks replied
What was the best year of your life (so far)?
2
68
1K
Toytown Assassin replied
whats the best tasting sparkling water flavor
25
498
mopspear replied
Best JPEGMAFIA song?
9
339
Viruz replied
TimeOut’s Best Cities in the World 2026
2
80
2K
LyricalShrike replied
Top Bottom