Crypto thief steals $4.4M in a day as toll rises from LastPass breach
cointelegraph.compeople who managed to migrate to KeePass - was it worth it?
I've used KeePass (and its derivatives) for over a decade. It works across all my devices and I sync it with Syncthing. Currently I'm using KeePassXC with my YubiKey as an added authentication layer.
I've never used a managed service, only KeePass. I just have a copy on my Google Drive and I use the Keepass2Android app to load the db directly from Drive. Outside of a few inconveniences it works really well.
For work I have a separate db where I keep work related passwords (ones for me personally, we have a on prem hosted service for team shared passwords) and I just check it into a git repo along with my notes and that works extremely well.
Does your key being on a managed service concern you?
i’m assuming they mean a copy of the encrypted db, not the key
Correct (late reply). I actually need to share my key with my SO in case of the worst but only the database is uploaded anywhere.
I have been using keepass(xc) for nearly as long as they have been available.
My pw data never touches cloud services. I don't trust them for exactly type of breach we saw with LastPass.
Totally worth it, but make sure you use a second factor outside the manager for anything important.
Keepass has been reliable across platforms and syncing methods for over a decade for me. TOTP key storage also works as intended.
It's not the prettiest software out there, but it just works.
Always been a keepass user here, 100% worth it to me, the overhead of having to manage my own password db is well worth not worrying about it being hacked.
It's been working for me for my personal accounts!
For business/jobs, I use Bitwarden or 1Password. Keepass is not the prettiest but I highly recommend it.