location: keepassx

Institute of Mathematics - PublicMathWiki:

Upload page content

You can upload content for the page named below. If you change the page name, you can also upload content for another page. If the page name is empty, we derive the page name from the file name.

File to load page content from
Page name
Comment

Revision 28 as of 2018-04-10 07:06:11

Description

KeePass(X) is a tool to store and manage passwords. It is freely available for

The following describes 'KeePassX' - the installed version at the thinlinc terminals.

How !KeePassX works

  • !KeePassX can create/open/edit/save password-databases.
  • A password-database is basically an encrypted file, where you can store your various usernames/passwords/URLs and also attachments like pictures or other important / private documents.
  • A password-database can only be opened if you know the Master-Password. The Master Password is the key to all your stored passwords.
  • If you forgot your Master-Password, you cannot access your stored passwords anymore.
  • Encryption- either the Advanced Encryption Standard (AES) or the Twofish algorithm are used for encryption of the database in 256 bit sized increments

  • All features: http://www.keepassx.org/features/

Using !KeePassX

  • Start !KeePassX:

    • Ubuntu / Thinlinc: Applications > Accessoires > !KeePassX

    • command line: keepassx
  • You can use the same password database on different computers if they have !KeePassX installed.
  • when opening !KeePassX with a database, you will be asked for the master password of the file.
  • when a password database is open, !KeePassX "locks itself" after a certain amount of time. After that you have to unlock the file again with your master password.

  • you can hide/view usernames and passwords by clicking on "View" --> "Hide Usernames" and "View" --> "Hide Passwords"

  • you can right-click on an entry and choose "Copy Username to Clipboard" or "Copy Password to Clipboard". You can then paste the password. After a few seconds, the password is no longer stored in the Clipboard.

Creating a Password Database

  • Click on "File" --> "New Database..."

  • you will be prompted to set a master key. Input your master password (the master password for all your other stored passwords). Then click "OK"
  • repeat your master password. click "OK".
  • chose a group. (Standard choices are Internet of eMail. You can also create your own groups).

  • click on "Entries" --> "Add New Entry..."

  • Input the information you need
    • Title: a short description of the entry
    • Username: your username
    • URL: on what homepage do you need the password
    • Password: your password
    • Repeat: repeat your password
    • Comment: a longer description of the entry

  • click on "File" --> "Save Database"

  • chose a location and a name for your password database. click "OK"

Best practice to sync

  • Only use a cloud service if you need to sync your passwords over several devices.
  • Decide by your own:
    • Pro 'cloud':
      • on all devices the same password.
      • creates automatically backups.
    • Contra 'cloud':
      • If your cloud access is compromised or the cloud service provider is compromised: the thief owns the treasure.

  • US based cloud provider like Google Drive, Dropbox, Apple iDrive, Microsoft OneDrive:

    • Those services are very attractive to hacker.
    • The NSA has the right to get all data from US companies. After Snowden it's for sure the NSA is not friendly.

    • Rule of thumb: Don't use US hosted / company based services for confidential data.

  • Non US based cloud provider: Switch Highschool cloud service - switchdrive

  • How to:

    • On all computers where you want to sync your KeePass database file, install and configure 'switchdrive'.

    • Open the KeePass database file on all of your devices directly from switchdrive folder.