Where should I keep my KeePass database?
KeePass Database file stored on local computer with Full Disk encryption (e.g. Veracrypt) KeePass Key File stored on an external USB disk. Cloud Storage 1 (e.g. Dropbox) to hold the Database file. Cloud Storage 2 (e.g. Google Drive) to hold a backup of the Key File.
Is KeePass database secure?
KeePass database files are encrypted. KeePass encrypts the whole database, i.e. not only your passwords, but also your user names, URLs, notes, etc.
How safe is KeePassX?
KeePassX is a very good option. There was a minor vulnerability where Windows version of KeepassX sends and receive update via cleartext HTTP. Attacker could theoretically MITM on unprotected network and spoof malicious update to Keepass. But this is non issue.
Is it safe to store KeePass on Dropbox?
It’s perfectly safe to upload to Dropbox because KeePass is securely encrypted. However it’s possible, although not probable, that KeePass has a flaw which allows an attacker to decrypt your data but in order to do so they’d need to gain access to your Dropbox as well.
Is Google Drive secure enough to store passwords?
Google Drive is most likely secured with the same password as your email. Therefore it is safe to store passwords of accounts that can be reset by email, in my case this is most account apart from banks etc.
Is the KeePassX database compatible with KeePass Password Safe?
KeePassX uses a database format that is compatible with KeePass Password Safe. This makes the use of that application even more favourable. Originally KeePassX was called KeePass/L for Linux since it was a port of Windows password manager Keepass Password Safe. After KeePass/L became a cross platform application…
What’s the difference between KeePass and a cloud password manager?
But a key difference between KeePass and cloud-based password managers is that KeePass is software you run locally – not an online service – and your KeePass vault is something you store in a location of your choosing. That can be on a hard drive, a portable USB key, or even a cloud service you subscribe to.
What happens if KeePass key file is compromised?
If Cloud Storage 1 is compromised, then the database file itself without the key file will be impossible to brute force, unless there’s a serious security vulnerability in Keepass’s encryption implementation. If Cloud Storage 2 is compromised, then the key file itself if useless without the database file.
What do you need to know about KeePass?
KeePass is an open-source password manager that does all the things you’d expect a password manager to do at the very least – it stores all websites and service credentials in a highly-encrypted vault that can only be unlocked with one Master Password, which becomes the only password you need to remember.