EzDevInfo.com

Is keeping a KeePass file in Dropbox safe? [closed]

Is it safe to keep KeePass password database file in Dropbox? Database can have long (14+ alpha, numeric, special character) password and local Key file on machine or on mobile which is not shared in Dropbox?

KeePass wildcard in url

I started using Keepass yesterday and it's really useful however I cannot find a way to add wildcard into the url...

I want one key being used on all url(s) that met the following rule:

http://www*.domain_name.ext

Then surfing to:

http://www.domain_name.ext
http://www1.domain_name.ext
http://www11.domain_name.ext
http://www12.domain_name.ext
http://www9999.domain_name.ext

will automatically fill user/password...

How can I obtain that?

Import passwords from lastpass to keepassx

I was wondering how if there were any current ways to import lastpass passwords to keepass/keepassx? I found the lastpass2keepass.py program, but it doesn't seem to work anymore (lastpass updated their csv fields?).

Is it safe to keep Keepass window open when not using it?

I read on Keepass website that Keepass keeps password encrypted in the memory.

So is it secure to keep Keypass window open?

Log in to Hotmail automatically with KeePass?

Is it possible to log into Hotmail or Google Mail automatically using a password manager like KeePass? I am trying to use the auto-type feature of this program by pressing the Ctrl+Alt+A key combination. For some reason it doesn't work on these two web services, although it does work on other websites.

Disable CTRL + A shortcut in KeePass

How do I disable the Ctrl + A keyboard shortcut in KeePass?

This is "ą" in Polish and I use it very often. I've dug into options and found nothing. It's annoying not being able to type normally with KeePass open.

GnuPG Command Line - Verifying KeePass Signature

I'm trying to verify the PGP Signature of the latest version of KeePass 2.14's setup file against this signature, but this is the output I receive:

C:\Program Files (x86)\GNU\GnuPG>gpg.exe --verify C:\Users\User\Desktop\KeePass-2.14-Setup.exe
gpg: no valid OpenPGP data found.
gpg: the signature could not be verified.
Please remember that the signature file (.sig or .asc)
should be the first file given on the command line.

C:\Program Files (x86)\GNU\GnuPG>

I found this command here, but it made no mention about ".sig" or ".asc" files, so I figured I did something wrong. By reading the man pages, I further tried the following:

C:\Program Files (x86)\GNU\GnuPG>gpg.exe --pgpfile C:\Users\User\Desktop\KeePass-2.14-Setup.exe
gpg: Invalid option "--pgpfile"

C:\Program Files (x86)\GNU\GnuPG>

As you can see, the results are quite obfuscating...

I took a look at this on SuperUser, but none of the links seemed to really address my question, at least not directly enough for me to get any idea on how to move forward on this.

Can anybody here help me with the esoteric technicality of OpenPGP & the associated use of the GnuPG program? I've felt pretty dumb learning VBS, but this is beyond humiliating: it's absolutely debilitating and maiming whatever confidence I had with my IT skills (then again, I have no justification for making any boast either, as I have yet to get my A+ Cert, lol).

UPDATE 04-04-2011

Okay, so I got tired of fooling around with Windows and decided I'd do it right by booting up Ubuntu; this alone made things much more logical!

So here's my list of commands and where I'm at:

proto@type:~$ cd Desktop/
proto@type:~/Desktop$ gpg --import KeePass-2.14-Setup.exe.asc
gpg: no valid OpenPGP data found.
gpg: Total number processed: 0
proto@type:~/Desktop$ gpg --import Dominik_Reichl.asc
gpg: /home/proto/.gnupg/trustdb.gpg: trustdb created
gpg: key FEB7C7BC: public key "Dominik Reichl " imported
gpg: Total number processed: 1
gpg:               imported: 1
proto@type:~/Desktop$ gpg --verify KeePass-2.14-Setup.exe
gpg: no valid OpenPGP data found.
gpg: the signature could not be verified.
Please remember that the signature file (.sig or .asc)
should be the first file given on the command line.
proto@type:~/Desktop$ gpg --verify KeePass-2.14-Setup.exe.asc
gpg: Signature made Sun 02 Jan 2011 05:25:24 AM MST using DSA key ID FEB7C7BC
gpg: Good signature from "Dominik Reichl "
gpg: WARNING: This key is not certified with a trusted signature!
gpg:          There is no indication that the signature belongs to the owner.
Primary key fingerprint: 2171 BEEA D0DD 92A1 8065  5626 DCCA A5B3 FEB7 C7BC
proto@type:~/Desktop$ gpg --verify Dominik_Reichl.asc 
gpg: verify signatures failed: unexpected data

As Mike instructed, I placed ".exe" & the ".asc" files in the same directory, that being the Desktop. As you can see in the code, I also placed the public key "Dominik_Reichl.asc" in the Desktop directory.

Please be patient with me, as I've been thoroughly spoiled by MD5; I'm assuming that Step 5 from above is the GPG equivalent to this:

C:\Users\user\>CD Desktop

C:\Users\user\Desktop>MD5Sum KeePass-2.14-Setup.exe
bae59065b24f0a6f2ed4bb9e0d6fc65f *KeePass-2.14-Setup.exe

I say this because the behavior changes whenever I move the "KeePass-2.14-Setup.exe" file into a "temp" folder on the Desktop. When I run the command this is the result I get:

proto@type:~/Desktop$ gpg --verify KeePass-2.14-Setup.exe.asc
gpg: no signed data
gpg: can't hash datafile: file open error

These results have lead me to believe that I'm supposed to extract the "DSA key ID" & the "Primary key fingerprint", from Step 5, and compare them to the values at the top of the Signature Page. So, is this where the similarity is at with MD5 verification? Is this all there is to it? Or is there a further step? Is there a command that I use to verify these two strings? Are those strings what I really need to check? What are those strings?

Now there's one other issue that I'm having to contend with. In the "Primary key fingerprint" results, I have 2 spaces between the "8065" and the "5626". When I use a spreadsheet to verify my results with the string on the Signature Page, I get a "FALSE" result because of the extra whitespace in my results. I checked the source of the Signature Page to see if the browser was ignoring the extra white space, but that's not the case.

2171 BEEA D0DD 92A1 8065 5626 DCCA A5B3 FEB7 C7BC    # From Source of Signature Page
2171 BEEA D0DD 92A1 8065  5626 DCCA A5B3 FEB7 C7BC    # From My Results

As long as I remove that extra whitespace, my results match with that from the Signature Page, but shouldn't they match without any intervention on my part? Should a difference in whitespace be cause for alarm?

Unfortunately, the GPG Man Pages are still quite obscure to me, or as some may put it "user-hostile" (search "user hostile gpg"), so I'll need a couple extra carrots tossed my way. I'll admit it: I'm dumb. In fact, when I was still learning how to use MD5 verification, I floundered around with it almost as much as I did with this.

Is there a Keypass plugin for Chrome?

A Google search is inconclusive.

Install KeePassHttp plugin for KeepassX on Mac OS X Lion

I installed KeepassX on my new Mac and I want to use a plugin (KeePassHttp) to autofill logins on Chrome. The instructions tell me to place it in the program directory of KeepassX but I cannot drag it into the application file and I'm not sure how to do this with Terminal.

The Chrome plugin page shows that KeePassHttp is active but cannot detect or make a connection with KeepassX

How can I finish this plugin install?

Is there a Way to Retrieve a Lost/Forgotten KeePass Password?

I recently decided to store all of my passwords in KeyPass Password Safe 2. I forgot my password to KeyPass.

Is there anyway to retrieve it? My assumption is no there is not for obvious reasons.

Can I change the default password profile in KeePass?

I'd like my default to be 256-bit hex key. Is there a way to configure KeePass with this default?

Best way to share certain passwords stored in Keepass?

What's the best way to share certain passwords that are stored in a Keepass database?

For example, I want to share certain Banking Passwords with a family member, but I don't want to share my work passwords (or my personal Keepass database password)

Can I use multiple URLs in the URL field of KeePass?

I am using KeePass version 2.19. What I would like to do is have more than just one URL address associated with a given user name and password.

The entry for a given website might look something like this...

Title
google

User Name
email

Password
pass

URL
https://accounts.google.com/ServiceLogin?hl=en&continue=https://www.google.com/
https://accounts.google.com/ServiceLogin?hl=sv&continue=https://www.google.com/
https://accounts.google.com/ServiceLogin?hl=de&continue=https://www.google.com/

As you can see the ?hl=en changes into ?hl=sv and then to ?hl=de for the three different languages in which I wish to view the Google log-in page.

But this of course could be something completely different, like different web services from the same provider like YouTube and Gmail by Google. Very much like SE where you have several websites but only use one user name and password.

I imagine something along the lines of having multiple entries for one and the same website, where KeePass would actually prompt you to choose which one you want to use. So you have several user names and passwords that use the same URL. But is it possible to have several URLs using the same user name and password, so that KeePass asks me "to which of the following three URLs do you want to auto-log into with this password"?

KeePass Password Safe 2.12: Unhiding Passwords?

KeePass 2.12 - Turning off hidden password - When I open an entry, the password is disguised by asterisks. How do I turn off this feature so that I can recall previously inputted passwords?

Save data after adding new entry

Is it possible (by option or trigger) to save the Keepass database automatically after I added a new entry?

I often forget to save it and then lose the new data when shutting down windows.

Alternatively: Is it possible to save the data when KeePass is forced to close when Windows exits?