lastpass interview questions
Top lastpass frequently asked interview questions
LastPass advertises that they do local encryption of passwords before they are transferred and stored on their website. However, when I log in with my past password, I can access all my passwords in clear text there. Doesn't this imply that they also have access to all my passwords? How can I verify that they do not have access to my passwords?
Source: (StackOverflow)
I know that, from a security perspective, using the same password for more than one website is a bad idea. However, I have a situation where I need to do that (the SE sites I have accounts on). On *.stackexchange.com, I can use the same password entry across subdomains. However, for the older SE sites that have seperate domains (SO, SU, SF, AU), I need to keep and update seperate password entries in lastpass, which is annoying. Is there a way to group these sites, so that changing my password for stackexchange.com will automagically change it for SO, SU, etc.?
Source: (StackOverflow)
I'm trying to change my Hotmail password after a breach in LastPass but it doesn't seem to work. So I'm curious if Microsoft has a limit of 16 characters for a password?
If so, this is very insecure and I'm getting this warning from LastPass:
Note that I am using LastPass to generate a secure password. It's just if I make it longer than 16 symbols Hotmail doesn't seem to accept it.
Source: (StackOverflow)
The way I use Lastpass with Chrome, I often open and browse my vault items, including the passwords. I just noticed with horror that I have several other extensions enabled that have permission to "Access all your data on all websites." Does this mean these other extensions "see" whatever I see in my vault, and that they can learn logins and passwords I've saved? If not, I'd love to understand why not, you know, just so I can sleep at night.
Source: (StackOverflow)
These are the settings I have for my Facebook account in LastPass:
When I visit Facebook.com, there is no auto-login or filling the username and password:
What's wrong?
Source: (StackOverflow)
Just try it. Close your browser, disconnect your computer from internet, open the browser and try to access your data on LastPass. It will be there. Because it's stored locally.
In this forum topic, Joe Siegrist says that LastPass always store the most updated local copy of our encrypted data. I wonder if that data is stored at a single file and where. So I could make backup copies of it and maybe even access it through LastPass Pocket.
I actually asked this same question in there, twice now, but still got no answer!
So, anyone?
Source: (StackOverflow)
How does LastPass keep your data secure? Can their employees see your data?
I've always used offline ways for (password/sensitive data) storage, but lately I keep hearing good things about LastPass. Indeed, it is more practical having it always accessible from every computer you're using without syncing and related problems, but the security aspect still troubles me.
I'm trying to work out if it would be a safe and/or good idea to entrust it with more sensitive data (e.g., bank PIN codes, financial/business related stuff and so on - you know, the things that would practically hurt if lost/phished)?
For example, if someone is sniffing your wifi network, would such data be easier than usual to sniff out while using LastPass?
Source: (StackOverflow)
I used LastPass to register a Gmail account. I need the password to enter it into Mail.app, Apple's email client, but I don't know the password. Help!
Source: (StackOverflow)
I use Lastpass on two different browsers (Mozilla and Google Chrome) with two different ID's on each browser. I don't use the Firefox ID on Chrome and vice versa. But today something strange happened. After using Firefox and logging into Lastpass, my Firefox ID was automatically filled in Chrome. How is this possible?
AFAIK, Chrome cannot read anything that is stored by Firefox extensions or cannot read Firefox cookies. So is Lastpass really connecting my IP address with my login ID?
From this answer it looks like there is a ~/.lastpass directory which is used by the Firefox extension. So it looks like the Chrome extension is reading data from it. Is that possible? I'm on Linux.
EDIT: From this answer on the Chrome discussion forums it seems very clear that Chrome extensions cannot read any external file, and can only access its local storage. I'm intrigued more now.
Source: (StackOverflow)
I've been using LastPass - now I love to use Chromium web browser. Is there any existing app similar to LastPass manager? Or any other way, like migration or something which I can keep synced with my Chromium browser.
UPDATE:
Previously I was using Firefox with LastPass Addon - but I couldn't find lastpass for Google Chrome Web Browser!
Source: (StackOverflow)
I intend to give some LastPass one time passwords to close family. Is there a way to know if a one time password has been used? Is it possible to get an email notification that it was used?
Source: (StackOverflow)
What are the main differences between these two tools, or other password management tools?
What sort of questions could I ask myself to determine or rule out a possible solution?
I am looking for something that:
- can be accessed through my iPhone, ideally with logging into websites
- can be accessed from a usb drive
- can store other data like financial information in
- can store multiple accounts for websites such as Gmail
Answers will be voted up by how much easier they make my choice between note apps.
I loved the way Senseful answered another question, where he stated the things that each of them do better.
Source: (StackOverflow)
Setup:
- I use Chrome Sync regularly across two machines
- I use LastPass as my password manager (it's already paid for this year so no alternatives suggestions, please)
- The binary version allows you to autofill htauth logins plus a few other features
Problem:
The binary version of the extension won't transfer across Chrome Sync so I have to explicitly install it across both machines. The first time I install it on both machines it works just fine and will auto-fill my htauth logins. However, the first Chrome start-up after doesn't load the binary version and won't log into my htauth logins, and THEN brings up the dialogue to install the binary version.
I have already tried to contact LastPass about this, but they feign ignorance on it working across Chrome sync only saying that it doesn't sync the extension across Chrome sync. This is fine for me since I'll just set it up on both machines, but it seems to be syncing the non-binary version (which isn't installed).
How can I get this to work across machines? Is there a way to have Chrome Sync ignore certain extensions completely?
Source: (StackOverflow)
I use LastPass on my laptop, and I often use my laptop at mobile wifi hotspots.
Lastpass won't autofill the form to connect to the wifi network because, until the wifi network is connected, Lastpass can't log in.
What I'd like to do is have LastPass (or Firefox) store the login information for a couple of pages, mainly the two wifi hotspots I use most, so that I can login to those networks automatically.
I know that Firefox can store login information, but it seems that LastPass has taken all control of form fields, so I'm not sure if control can be given back to Firefox on a site by site basis.
Is this possible?
Source: (StackOverflow)
My LastPass symbol for some reason has a number under it. This started today, and I'm not sure why it's there. Any ideas?
Source: (StackOverflow)