Master Password password history policy (enforcement)

A lightweight and easy-to-use password manager

Brought to you by: dreichl

Master Password password history policy (enforcement)

Forum: Open Discussion

Creator: Herman van Drie

Created: 2017-03-28

Updated: 2017-03-28

Herman van Drie - 2017-03-28

Hi,

Currently it's possible to enforce a policy to renew the Master Password composite key every x days.
However, upon a required change of the Master Password composite key, it's possible to re-use the same password.

Is it possible, viable, that a Master Password history is enforced in a way that only KeePass only can verify whether the Master Password composite key has been used before (in the last x times) and prohibits the re-use of the entered password?

Thanks in advance for your replies.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

wellread1 - 2017-03-28

I think that is probably something better implemented in a plugin. KeePass doesn't keep track of the Master Key (e.g. master password).

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Log in to post a comment.