Welcome, Guest! Log In | Create Account

Donate Share

KeePass Password Safe

The forum address has changed, you have been automatically redirected. Please update any bookmarks to use the new URL.

Subscribe

KDB-Database Security

Add A Reply

You are viewing a single message from this topic. View all messages.

  1. immute

    2009-01-13 20:40:22 UTC
    Truecrypt's encryption is not weaker than KeePass'. What you read was a vulnerability that would allow attackers to know if a random file was infact a TrueCrypt volume. This vulnerability in no way helps the attacker gain access to the data inside, all it does is reduce the user's "plausible deniability".

    Someone who has access to changed versions of your KDB *might* have a slight advantage if they apply cryptanalysis, but considering how hard KDB is to break in the first place, you needn't worry. However, if the master password to one of your former DB's is somehow leaked to them... then you should worry.

    My advice: when you change your master password: Delete *ALL* backup copies that use the old password. And, if you change it because your old password was compromised, change as many passwords that the DB contained as you feasibly can.
< Previous | 1 | Next >

Add a Reply

This forum does not allow anonymous participation.

Log in to add a reply. Not registered? Create an account to participate and receive email updates when replies are posted to this topic.

About SourceForge

Find Software

Develop Software

Community

Help

Copyright © 2009 Geeknet, Inc. All rights reserved. Terms of Use