08 January 20, 10:49
Quote:Continue Reading
A couple of weeks ago, LastPass changed hands, again. Some of my friends ditched it and moved on to BitWarden as a consequence.
While I see the advantages of using cloud-based services to store passwords, especially when it comes to comfort, I do find the use of such service to risky. What if their services get hacked or someone finds a bug in the service's extensions or apps that can be exploited?
Anyway, I managed to convince a friend to switch over to KeePass. His requirements were quite simple: cross-platform sync, a mobile app and auto-fill on desktop. It's easy, just place the KeePass database in your cloud storage service's folder (for e.g. Dropbox, OneDrive, GoogleDrive, or, if you want full control, a self-hosted solution) and you have cross-platform sync. It's safe because the database is encrypted.
My go-to choice for a mobile app is Keepass2Android Password Safe for Android (supports Quick unlock, fingerprint unlock, syncs to your cloud service), and KeePassium or Strongbox for iOS. While auto-type is natively supported in the KeePass desktop application, auto-fill isn't.
You'll need to use a browser extension for that. I used to recommend Tusk, but it is no longer maintained. The Kee add-on by Chris Tomlinson does a fine job. Kee was formerly known as KeeFox, and some of you maybe familiar with it.
You'll need two things to get it working
1. The Kee extension for Firefox and Chrome. You'll also need the KeePass desktop application to be running in the background.
2. The KeePassRPC plugin (from the same developer) which allows the add-on to communicate with the browser.
Install the extension from the Firefox add-on repository or the Chrome web-store. A new button will be added to the toolbar and it is in the "OFF" state after installation.
Navigate to the KeePass desktop application's plugins folder (normally C:\KeePass\Plugins) and place the KeePassRPC plugin file named KeePassRPC.plgx inside the directory. Restart KeePass if it was already open, and it should load the plugin.
A new tab opens in the browser and you should see a window pop-up (in KeePass) asking you to "authorise a new connection". A code is displayed in the pop-up that you should enter in the box in the browser tab to authenticate the add-on to access the passwords from the desktop client.
The welcome screen of the plugin asks you to choose whether you want to create a new database, or use the existing one. Select the latter and login to your database as usual. That's it: you've setup Kee and KeePass to work together.
...