Password Manager that allows syncing accross platforms [closed]

password synchronization

I use OS X, Linux, Solaris and windows for work and from home. There are good tools that allow me to manage the many logins/passwords required platform independently. But mostly they expect me to carry a thumb-drive around or require direct access to a central location (a sky drive in the cloud).

The thumb-drive is too easily lost (= synchronized backup needed), the central location not always reachable/ mountable. Besides company policy rightly prevents this often.

Is there a tool that allows me to add passwords locally and then syncs it's DB with the "mother-ship" later. Or is there another approach that you use, that solves my problem?

EDIT My question is more about "synchronize" than cross platform. I've evaluated (=read feature list) some good cross platform tools, but need one that does the synchronizing for me. By synchronize I mean "merge two versions" not "replace (hopefully) old file with new." I'm not sure I'm always disciplined/awake enough to prevent data loss.

UPDATE 2010 Lifehacker just posted that AgileSolutions now have a beta version of 1Password for Windows.

UPDATE 2014 I've now been using 1Password on Windows/Os X/IOS for several years. It works for me, but it's not free/open.

You can look on http://Altenativeto.ne/1password for other tools with similar feature lists.


Try 1Password, there's a Mac and iPhone app available. Not cross platform, but if you have an iPhone then that will always be with you...


Have you looked at KeePass at all? I find it works beautifully for me. It supports syncing with a password file that's hosted online, plus there are many other add-ins for it.


Lastpass

Have you looked at Lastpass? It's amazing. There is no syncing required but it works just fine offline. They have support for Firefox via an add-in and support for other browsers via a Bookmarklet.

I have about 250 passwords stored in it and I can get to them from anywhere. They also support One Time Passwords should you need that level of security.


Joel Spolsky on his blog last year recommended Password Safe (Windows) and Password Gorilla (Mac and Linux) which can both read the same password file and were synced via Dropbox.

Dropbox will keep both files around in case of a conflict - in case that happens Password Gorilla will allow you to merge the two databases together.

Source: http://www.joelonsoftware.com/items/2008/09/11b.html


People are going to recommend you Keepass, 2.0 specifically. They are wrong, and you should listen to me instead. Keepass is not yet the tool you want:

  • It's built on .NET, so getting it to work with your combination of Windows, Linux and OSX is a pain.
  • It's written by a single developer, with no particular schedule or incentive to fix bugs.
  • It only synchronizes over FTP and HTTP, because it's hard work and "the database is encrypted anyways." Nevermind the insanity of deploying FTP in 2009. You can find a plugin to sync via SFTP and a few others, but for the next problem.
  • Every upgrade changes the version and breaks all your plugins. Even a minor rebuild. I think it has to do with authenticated assemblies, but I'm not a .net expert.
  • Nonstandard format. Ideally KeePass is a clever UI to some common algorithms. Our previous system was a GPG file, which wasn't great for usability, but worked no matter the scenario. With KeePass, if KeePass is broke, you're hosed.
  • The sync is a lie. You will test it on your box, and it will appear to work. Then someone tries something you didn't and discover some changes won't propagate, like say moving an entry from one folder to another. This report was marked "missing feature, notabug".

What I recommend instead is choosing among the many formats and systems that handle everything you need except sync; even Keepass 1.x fits this bill. Then set up an SVN repo; there's no way you're changing it so often to need conflicting changes. If you screw up, you'll at least have a revision history to fall back on.

Related

How do I set an MX record in Route53 for a GoDaddy domain?
Windows Update not working on Windows 2012 R2 Standard
Puppet: Node name seems dependent on reverse dns?
Is it good practice or too draconian to reject mails from mailservers with no RDNS
How many files in a directory is too many? (Downloading data from net)
Are DNS records private information?
Using Amazon SES to send mails to specific domains in Zimbra
HAProxy Combined Acls
Docker container unable to connect to postfix on host with error "MX Routing not available"
How do I configure the hostname for the GitLab NixOS service?
How to keep pipeline files in a separate repository for azure devops pipeline?
Replacing .dll files while the application is running?