Activity for Rethread
-
Rethread posted a comment on discussion Open Discussion
A key file does not increase the length of the password, it becomes part of the password used to encrypt the database. Having a key file does not make it acceptable to use a shorter password. A key file does increase the effective length of the password. A key file does potentially does make it acceptable to use a shorter password if I define password to mean the string entered into the "Master password" box. One example, I decide to store a copy of my database on a website, but do not store the...
-
A few years ago, TrueCrypt was considered the most reliable, but today this program no longer exists due to the flaws found in it. I don't think that was the reason. https://en.wikipedia.org/wiki/TrueCrypt VeraCrypt is an active replacement forked from TrueCrypt.
-
A few years ago, TrueCrypt was considered the most reliable, but today this program no longer exists due to the flaws found in it. I don't think that was the reason. https://en.wikipedia.org/wiki/TrueCrypt VeraCrypt is an active replacement forked from TrueCrypt.
-
May I suggest changing the Title to DeleteMe255? That will prevent the entry from being matched for Autotype. You can also search for deleteme in case you have accumulated entries that you you want to delete.
-
While I don't use password expiration, your suggestion seems logical. I think you are saying that you would like the Expires field to be able to select to automatically change the Expires field to a point x days (for example) ahead each time you change the password.
-
I would have renamed the database to *,kdbx.
-
Search for all of the .kbdx files on your computer. You can usually open KeePass by "opening" the .kbdx file. I suggest synchronizing your database with one or more USB drives. Then synchronize the USB drive database with your other computer.
-
A title match only needs to match part of the target title. So if the title you want is Landowners but you had an old entry called Dow, it would match. Maybe use the KeePass search to look for subsets.
-
IIRC is a common string to represent "If I Remember Correctly". I use no plugins. Thanks. It appears that I am not missing a setting.
-
Yes, I am leaving KeePass up for days at a time in a protected environment. Ctrl+L seems possible, but the L key is not near stuff I usually use with Ctrl. But I certainly have hit keys, and missed apparently, with other programs and done things I did not intended. And I don't know what keys I hit by mistake. No triggers or plugins. IRC should have been IIRC -- if I remember correctly. Is there a setting for causing KeePass to require relogin periodically other than the inactivity-related ones? I...
-
Every few days IRC, KeePass has been asking for the master password again. I went to check the setting in Tools>Options>Security, and I did not find a relevant overriding setting. The first two entries are lock workspace..inactivity.. Both of those are de-selected. Plus this latest re-login was not long after KeePass activity. Under the Tools>Options>Security General subheading, all 7 are de-selected. Logging in again has not been a burden, but I was wondering where the controlling setting is. Currently...
-
I think you are saying that with the default, a title match will cause the entry to be used for autotype. But if one of the target windows matches, that sequence will override the default or override default. If Tools>Options>Advanced(tab)>Auto-Type(section) is disabled, and you have one or more target windows, the default will never be used-- if no target window matches, then nothing is autotyped. And either way, if there is no target window entered, then the the title match still autotypes the...
-
I think you are saying that with the default, a title match will cause the entry to be used for autotype. But if one of the target windows matches, that sequence will override the default or override default. If Tools>Options>Advanced(tab)>Auto-Type(section) is disabled, and you have one or more target windows, the default will never be used-- if no target window matches, then nothing is autotyped. And either way, if there is no target window entered, then the the title match still autotypes the...
-
For a key file to be effective it needs to be something that you carry, not something that is always on the machine. I see value in having the key file to be something on your computers, but not necessarily present on the USB drive that you carry with you.
-
Thanks If the Title matches, but neither "Target" window matches, what is the expected behavior?
-
When you do Ctrl+Alt+A, and you get a match for the Title, and Auto-type is enable for the entry, and there is no Target Entry entry on the Auto-Type, then the autotype sequence selected becomes a candidate to be sent. When do Ctrl+Alt+A, and you get a match for the Title, and Auto-type is enable for the entry, and it is the only match, and there is is more or more Target Entry entries, and one matches the current window, then the autotype sequence selected becomes a candidate to be sent. If only...
-
Somehow reading help, and the above posts did not get me there. I get it now, also. When you do Ctrl+Alt+A, and you get a match for the Title, and Auto-type is enable for the entry, and there is no Target Entry entry on the Auto-Type, then the autotype sequence selected becomes a candidate to be sent. When do Ctrl+Alt+A, and you get a match for the Title, and Auto-type is enable for the entry, and it is the only match, and there is is more or more Target Entry entries, and one matches the current...
-
revising... ignore for now
-
I feel like I am still missing something in the "Target Window" section of Auto-Type. https://keepass.info/help/base/autotype.html#autowindows has 7 occurrences of "Target Window" and two of those are occurrences of "Target Window Filters". The "Target Window Filters" section talks about use of wildcards in the title, and does not talk about the "Target Window" section of Auto-Type. I have looked for a posts and Youtube videos on the topic. What I am asking for is a really simple statement of what...
-
Beginning with KeePass 2.54 policy enforcement is mandatory. That sound ominous. Will I have to learn about policy if nobody else is involved in my KeePass use?
-
Is there a way to ensure that when KeeAutoExec has opened the different databases, it is the main database that is active (and not the last one opened)? This may or may not address your question. If KeyPass is closed, and you want to open a particular database, make a shortcut to the desired kdbx file, and use that shortcut to open KeePass. So instead of opening the KeePass program, and having it remember the most-recently-used database, you will for sure open the database that you want. As an alternative,...
-
Is there a way to ensure that when KeeAutoExec has opened the different databases, it is the main database that is active (and not the last one opened)? Make a shortcut to the desired kdbx file, and use that shortcut to open KeePass. So instead of opening the KeePass program, and having it remember the most-recently-used database, you will for sure open the database that you want.
-
Are you asking about the effect on a web page for Ctrl A? I think Keepass has nothing to do with what happens when you do a Ctrl A on a website. If you do Ctrl A into Keepass, then Keepass is involved in that-- it is select all. If you are clicking into a website, and want autotype to happen, that key combo is Ctrl Alt A.
-
I came here to suggest this. I did just provide the only up-vote so far on https://sourceforge.net/p/keepass/feature-requests/2028/ Work around suggestion, instead of "aaaa bbbb cccc" make the string "aaaa, bbbb, cccc" with a new line following cccc. Then double-clicking bbbb captures only "bbbb". Not a big deal. However I don't imagine anybody would want to capture "bbbb ", which includes the space.
-
Try entry CasinoBarcelona (no space)
-
What program are you trying to paste into? A browser web page? What browser? If not a browser, what does the title bar say? If a browser, what does it say when you hover over the tab? In the toughest cases, you can use "Auto-type selected entry" https://steveshank.com/cgi-bin/article.pl?aid=722
-
What program are you trying to paste into? A browser web page? What browser? If not a browser, what does the title bar say? If a browser, what does it say when you hover over the tab?
-
wellread1 : Along with your database, copy KeePass portable onto a USB drive formatted as exFAT (not NTFS). Why not NTFS. Is that to make sure there are no permissions/ownership issues? (I am not following the rest of this thread).
-
wellread1 : Along with your database, copy KeePass portable onto a USB drive formatted as exFAT (not NTFS). Why not NTFS. (I am not following the rest of this thread).
-
Just curious... what are "password popups"? Is that the thing you get if you do Ctrl+Alt+A and more than one Title matches?
-
Keep a pen and paper next to the bed, in case it comes to you in the night.
-
I suggest you use the Test button. https://keepass.info/help/base/security.html , which Dominik pointed to, says We recommend the following procedure for determining the Argon2 parameters: and later it includes this: Click the 'Test' button. If the key transformation takes too much time (longer than you are willing to wait when opening/saving the database file, e.g. more than 1 second), cancel it, decrease the memory parameter and click the 'Test' button again. Repeat this until the required time...
-
I suggest you use the Test button. https://keepass.info/help/base/security.html says We recommend the following procedure for determining the Argon2 parameters: and later it includes this: Click the 'Test' button. If the key transformation takes too much time (longer than you are willing to wait when opening/saving the database file, e.g. more than 1 second), cancel it, decrease the memory parameter and click the 'Test' button again. Repeat this until the required time is acceptable. I use about...
-
You can have separate entries. Start by making a Duplicate Entry of the original. When you do that, there is a box where you can select "Replace user names and passwords by references" Then if you change the password or username in the original, it propagates. So how do you select? Suppose the original is titled "Target Site". You could name the new Title as "Target Site NoOb" This would never match automatically, so you would need a way to select that manually. If you want an idea how to handle...
-
and maybe keep a flashlight by the bed.
-
Keep a pen and paper handy in case it comes to you.
-
Keep a pen and paper handy in case it comes to you.
-
If you share a KDBX file in One Drive, how do you deal with two people writing to the file concurrently? Maybe have one person own the file, and others have read-only access? I thought about experimenting with trying to open a read-only KBDX file, but I did not. Another idea would be that each has a KBDX file, and an administrator synchronizes them when others are not using the files?
-
I would opt for fewer characters, but more iterations. I think the iterations should take 3 to 5 seconds. I am not telling you that "dory sat on Tagger ship blue lip" is a more secure password than pdAlcq%J`Ko&[4fl7(cR would be but it is a lot more usable.
-
Please tell us what solved the problem.
-
You can keep your password in a safe deposit box. With the right documentation and a death certificate, the heirs can get into the safe deposit box. Alternatively can have another KeePass database that has the memorable keepass password as perhaps the only entry. Protect that database with a strong 33 character password. Give one person the first 11 and last 11 characters give one the last 22 characters. Give the third person the first 22 characters. Any two of the 3 people can create the 33 character...
-
Try 'Tools' → 'Options' → 'Interface' → then select buttons 'Select List Font' or 'Select Password Font'; these settings affect KeePass only, not other applications). https://sourceforge.net/p/keepass/discussion/329221/thread/2dd04ff2/
-
Try 'Tools' → 'Options' → 'Interface' → then select buttons 'Select List Font' or 'Select Password Font'; these settings affect KeePass only, not other applications).
-
I have never used a string name, and still don't know about them. But if you are looking for the contents of the named string, are you sure looking for string name is the right thing to find a content? Other strings seems interesting. Maybe try a regex search for string name, and use a single period as the search term. I understand I am displaying my ignorance, but there it is.
-
Paul, I could agree with You should not rely on only one USB stick to save your database. I sync with 3 or 4 of them. So I think you were thinking of the case of having your only copy on one usb flash drive. I have found USB sticks to be very reliable, but no media is fail-proof..
-
S: Global autotype does work very nicely for me for most websites.. It does look at the window titles. If it does not work for you, I guess you could get more specific about what the website URL is and what the title of the entry is in KeePass. You must enable autotype for the entry. Or if something gets entered, but it is the wrong thing, turn off two-channel obfuscation. If you want autotype to only type the password, rather than the regular sequence, then Ctrl+Alt+Shift+A does that. It just enters...
-
S: Global autotype does work very nicely for me for most websites.. It does look at the window titles. If it does not work for you, I guess you could get more specific about what the website URL is and what the title of the entry is in KeePass. You must enable autotype for the entry. Or if something gets entered, but it is the wrong thing, turn off two-channel obfuscation. I don't want my browser to be remembering usernames or passwords. So Autotype by KeePass makes entering username and password...
-
See if turning off two-channel auto-type obfuscation helps. If that does not do it, I would make an autotype sequence accessed some delays thrown in.
-
See if turning off two-channel auto-type obfuscation helps.
-
See if turning off two-channel auto-type obfuscation helps. If that doesn't do it, maybe try adding something like {DELAY=20}{CLEARFIELD} to the password sequence.
-
See if turning off two-channel auto-type obfuscation helps.
-
See if turning off two-channel auto-type obfuscation.
-
I was surprised to read that I could search for passwords. I could envision a reason I might want to. I found that the search functions are under the "Find" heading, and that there is a "Find in Selected Group". Wondering if there was a change in the interface from 2. 49 to 2.50, I finally upgraded. Still says Find. Experimenting, I found that the simple expression gets matched anywhere within the string. For an exact match, I would do that with regex. For example, regex ^xyz$ would be expected to...
-
I was surprised to read that I could search for passwords. I could envision a reason I might want to. I found that the search functions are under the "Find" heading, and that there is a "Find in Selected Group". Wondering if there was a change in the interface from 2. 49 to 2.50, I finally upgraded. Still says Find. Experimenting, I found that the simple expression gets matched anywhere within the string. For an exact match, I would do that with regex. For example, regex ^xyz$ would be expected to...
-
I was surprised to read that I could search for passwords. I could envision a reason I might want to. I found that the search functions are under the "Find" heading, and that there is a "Find in Selected Group". Wondering if there was a change in the interface from 2. 49 to 2.50, I finally upgraded. Still says Find. Experimenting, I found that the simple expression gets matched anywhere within the string. For an exact match, I would do that with regex. For example, regex "^xyz$" would be expected...
-
I was surprised to read that I could search for passwords. I could envision a reason I might want to. I found that the search functions are under the "Find" heading, and that there is a "Find in Selected Group". Wondering if there was a change in the interface from 2. 49 to 2.50, I finally upgraded. Still says Find. The simple expression mode seems generally useful for what I would do, but that double quote thing could byte me. Thanks. This was an informative thread.
-
Try this command in a command window to search drive G: dir g:*.kdbx /s /a Same for other drives, using the appropriate drive letter, of course. It could take a while to search big drives. Note that KeePass databases don't have to be named * .kdbx , but that is the default. If you are somebody who would decide to be tricky by overriding the default and naming the database peoria38.jpg, then it would be much trickier to find. Regarding backups, consider what you would miss if your drive failed. If...
-
Try this command in a command window to search drive G: dir g:*.kdbx /s /a Same for other drives, using the appropriate drive letter, of course. It could take a while to search big drives. Regarding backups, consider what you would miss if your drive failed. If you want to plan further, imagine what computer data you would miss after a house fire.
-
I think setting the iterations for the master password to be important. Use many million. I suggest using the 1 second button, and choosing a number around 4 times that resulting number. So it takes 4 seconds for your computer to recognize your password. That is only when you start up KeePass. That slows down any attacks. With that, I don't think you need anything like a 15 random character master password.
-
Caps lock was on? Numlock was not in its normal position, and you used that portion of the keyboard? IMO, it is not important to use the latest version if the current version is working great.
-
It looks sound to me. If I read correctly, you only use any given password for one site. You avoid even a short window of losing a password.
-
One of these? Auto-Type X An entry matches if its title is contained in the target window title An entry matches if its URL is contained in the target window title An entry matches if the host component of its URL is contained in the target window title An entry matches if one of its tags is contained in the target window title X Consider similar dashes as identical (-, -, -, -, -, -, _, -) Expired entries can match Always show global auto-type entry selection dialog
-
For the database itself, you can copy it in Windows to a different name. I think you would want Keepass to be closed during that operation. So I periodically keep copies with filename that end in .bk1, .bk2, .bk3, and so forth. But I also have copies on different USB drives and computers. I synchronize those. There is more than one right way to do backups and synchronizing. So regarding the stuff in the Recycle Bin, I see you cannot search for those. I created a new empty folder called Trash_experiment....
-
Fidelity.com Active Trader Pro -- not a browser page. This describes the situation, and the use of Autotype Selected Entry, which works. https://sourceforge.net/p/keepass/discussion/329221/thread/fbacd0d683/ I set Global Autotype to Ctrl+Alt+Q. You participated in that. I keep an eye out for some new feature that causes Ctrl+Alt+A to work on that program. My concern with the autotype selected entry is absentmindedly using the Cntrl+Alt+Q and sending that login info somewhere else. What I try to do...
-
I had not used custom sequences for real stuff. I guess that copy of target window could be useful for people to share their custom sequences for things like Paypal, Amazon, etc.
-
This bullet point in https://keepass.info/news/n210910_2.49.html looks like it describes a feature that could be of use. "Added dedicated context menu for auto-type associations in the entry dialog, which provides the following new commands: 'Copy Target Window(s)', 'Copy Sequence(s)', 'Copy Item(s)', 'Paste Item(s)', 'Duplicate Item(s)' and 'Select All'. " In 2.49 I cannot figure out how to get to the context menu with those choice. How do I try 'Copy Target Window(s)' in particular? That one seems...
-
In my question 1, I was trying to ask if there was a new 2.48 that I or others that would fild let them do things with KeePass better. I have now gone ahead and installed 2.48. I am pleased that it still works the same and looks the same. I will make another post asking about a specific bullet point that looks like it could be useful to me, but I may not understand. Your dummy entry sounds useful. In my case, the title of the entry that actually executes is "spot moble refill manual". Yes, mobile...
-
Clearly you are pissed off about something. Did I disrespect you at some point? Probably.
-
Was there something about my two questions that you found non-specific, and prompted you to post RTFM?
-
Was there something about my question that you found non-specific?
-
Works for me from 2.47. Opens https://keepass.info/ in my default browser. EDIT: I am not using a plugin, so I was confused. Only the KeePass link works for me.
-
Sorry. I had not realized that keepasshttp is a plugin. You were very clear, and I was not tuned in. I use KeePass with no plugins.
-
Sorry. I had not realized that keepasshttp is a plugin. I use KeePass with no plugins.
-
Works for me from 2.47. Opens https://keepass.info/ in my default browser. Do you maybe have something like uMatix or other blocker software that might be interfering?
-
Keepass works great for me. But am I missing something? Some of the 2.49 bullet points for changes look interesting if I could understand them. Are there any that would probably be of interest to a lot of people who are already using Keepass successfully? I am still using 2.47 because I thought the 2.48.1 list did not add anything that seemed to fill a need for me. Is there a method that would answer "what Title would cause me to start entering username and password at this place?" I currently use...
-
Glad it's working. You really should think about your backup plan. Mine is to have copies of my database on different media and to Synchronize on occasion. This is supplemented by the occasional copy to a file with a different name. But it's good to know there is a repair that will sometimes solve limited corruption.
-
There is more than one right way. I keep my key file on my computer, and my password in my head. I also could reconstruct my key file from memory. It's handy. For security, I mainly rely on my password being hashed millions of times to slow any exhaustive trial. I like my hashing to take a some number of seconds.
-
Is Tools > Options> Integration showing what you expect?
-
If the name of more than one entry is contained in the title for more than one window, then KeePass asks which one you want. Take a look at the names of the choices offered to you. Consider making the names longer so that two sites are unlikely to contain that string.
-
Irrelevant sidebar question: Why does the "Auto-type selected entry" option not have a default keystroke? I will guess that it could cause somebody to trigger it absentmindedly or by mistake. By not having a default, it makes the user do some study and make some effort to get it going, thus keeping the people who have not studied away. Have you never invoked it and accidentally sent a username and password to a place you did not intend? I remember when trying to assign a key combo, I typed the type...
-
Thanks for the search term. After searching, I think collision refers two two different text/source files having the same hash, and particularly if the text files that did that would not be just some gibberish. My thought was about 50 million iterations hitting a value that then repeats every 3664 times (for example). I think it is possible to have a function that as it iterates a 256 bit hash function and will not repeat the same result in (2^256-1) tries. That implies that after that point, things...
-
Thanks for the search term. After searching, I think collision refers two two different text/source files having the same hash, and particularly if the text files that did that would not be just some gibberish. My thought was about 50 million iterations hitting a value that then repeats every 3664 times (for example). I think it is possible to have a function that as it iterates a 256 bit hash function and will not repeat the same result in (2^256-1) tries. That implies that after that point, things...
-
Thanks for the search term. After searching, I think collision refers two two different text/source files having the same hash, and particularly if the text files that did that would not be just some gibberish. My thought was about 50 million iterations hitting a value that then repeats every 3664 times (for example). I think it is possible to have a function that as it iterates a 256 bit hash function and will not repeat the same result in (2^256-1) tries. That implies that after that point, things...
-
I was reading this thread, and your links, and I was trying to understand what they meant by "variable length password". My wording was my attempt to guess. What would be a good way to describe what they meant by " variable length password". There are I am able to use the password generator to my satisfaction already. When I open the generator, it will come preset at 20 characters, but I can choose a length. Once it is generated, it is a specific length. I think they are asking for that initial number...
-
Thanks. I use global autotype a lot. There are a few places that will not work.
-
I use the Autotype Selected Entry feature. I set Tools > Options on the Integration tab set Autotype Selected Entry box to Cntl+Alt+Q. I have absentmindedly pressed that key combo when I should have pressed Cntl+Alt+A. It occurs to me that maybe Keepass could save me from myself if that entry would have matched something in my list. That inhibit would be a checkbox in the Integration tab to let me choose that option. Maybe give the same selection box that comes up when two entries match for Cntl+Alt+A....
-
I expect there is a term for what I will try to describe. In the old CRC (cyclic redundancy check) I think that it was the deal that all codes were possible, and if you used all of the values of the CRC size as inputs, that all of the possible outputs would be used -- but in what looks like a random order. What is the term for that? Does a similar thing happen with the SHA or MD5 algorithm? If it does not, it seems possible that repeated hashes could potentially repeat after some non-huge number...
-
After reading the this and the two other linked threads, I think the term "variable length password" is referring to variable length password generator default.
-
There is more than one way to trigger autotype. Say what it is you are looking to do. Do you want to place the pointer into a command window, and have your string typed? This describes a method that will work when others do not: https://steveshank.com/cgi-bin/article.pl?aid=722
-
I see no value in you putting sand in your eyes. Of course neither you or DYgsd6yfdysfgdf suggested that, but that doesn't mean that I cannot set that up as a straw man, and argue against it.
-
Yes... because you made the password longer, it would be basically the same as typing the password twice. My earlier response went away. You appear to have made an error in inferring that the key file duplicated the password.
1 >