1Password migrants thread

[KD7IWP]

I use 1Password and I don't have a problem paying a subscription for it, simply because I regularly use it. When many apps started to transition to a subscription model I was frustrated by it and didn't want to upgrade. However, I've since realized that I'm completely fine with it, provided I use it regularly. Banktivity and 1Password are the two subscriptions I pay for and I believe it is justified by the services that they provide on the backend (typically syncing and access to my data online. One subscription I absolutely can't do is Creative Cloud simply because I only was using my Photoshop CS3 copy once or twice a year. For that I created a VM of an older OSX and I run it in there as it's simply not worth upgrading.

I also can't tell you how much delight it brings me when my wife encourages other people to use it as well, she's not a techy person but to see her understand the value it brings to her life and have her share with others, priceless. We share vaults with each other as well as a small vault with the executor of our will so that if something should happen to us they can access all of our personal and financial information.

 

[MacBH928]

I use 1Password and I don't have a problem paying a subscription for it, simply because I regularly use it. When many apps started to transition to a subscription model I was frustrated by it and didn't want to upgrade. However, I've since realized that I'm completely fine with it, provided I use it regularly. Banktivity and 1Password are the two subscriptions I pay for and I believe it is justified by the services that they provide on the backend (typically syncing and access to my data online. One subscription I absolutely can't do is Creative Cloud simply because I only was using my Photoshop CS3 copy once or twice a year. For that I created a VM of an older OSX and I run it in there as it's simply not worth upgrading.

I also can't tell you how much delight it brings me when my wife encourages other people to use it as well, she's not a techy person but to see her understand the value it brings to her life and have her share with others, priceless. We share vaults with each other as well as a small vault with the executor of our will so that if something should happen to us they can access all of our personal and financial information.

Thats ok and at $30/year its great value, for me personally:

1-I am against the principle of pay or else/ rent my software model

2-I want to sync locally and not store my passwords in someone's else's hard disk(1password in this case)

 

[MacBH928]

Think about it this way. I know they won't, but roll with it: what if AgileBits decides to pull up anchor, go out of business, and set sail? Keep in mind that the data you have on their servers (your passwords, vaults, etc.) is effectively their data, so they are not legally obligated to give that data back to you should they close up shop. It would take a case in court for them to give that back to you.

So to ask the recurring question: who counsels the counselor? Who does the banker use for their bank? Who backs up your backup, in case your backup is invalid or failed? My point here is that you should always have multiple copies of a backup or multiple copies of your data in different locations so you are not crippled if your backup fails. In fact, a piece of advice I learned from a DBA as he was shifting his work to me because he was leaving his job:

You are never as secure in your backups and your latest backup as your latest restore.

Backups are important, yes, and multiple backups even more important; but all of those backups are worthless if you could not restore from them. This is where a local vault comes in because you wouldn't be stuck with being dependent on them for any disaster recovery. If their service goes down for any reason, anyone using them would be effectively locked out of their password vaults until that service come back up.



I agree. Redundancy and control are my problem. Passwords are like PCI info. You wouldn't want someone else to have and hold your bank account number, let alone CC number to access the funds in your accounts. Why give the keys to not only your sensitive data, but data that affects your life to someone else? This could even be a case where Ben Franklin's freedom for security quote comes into play.

BL.

I agree, and that comment about your security info. They can call your bank and give them all needed info for your vault like birthdate, addresses, spouse contact and do some serious social engineering , but takes me back to point one, if your vault is secured with a password what are the chances a hacker can break it?! is it possible the 1password has a flaw in the app or their security that makes it easier to access or something?! I don't know

My other question is , will 1Password with subscription allow you to export your data? I imagine yes.

Currently I am happy using the IP7 but afraid I buy an EnPass license and then they too turn subscription. Everyone is turning subscription even that MSecure one.

 

[bradl]

I agree, and that comment about your security info. They can call your bank and give them all needed info for your vault like birthdate, addresses, spouse contact and do some serious social engineering , but takes me back to point one, if your vault is secured with a password what are the chances a hacker can break it?! is it possible the 1password has a flaw in the app or their security that makes it easier to access or something?! I don't know

Think about it this way. If your vault is on AgileBits' servers, should anything happen to those servers (read: major breach), to mitigate any attempts to exploit the compromise of those vaults, AgileBits would have to shut off their service altogether, leaving you locked out of your vault. That doesn't eliminate the compromise of that vault, as the hacker would still have had the means to get a copy of that vault off of AgileBits' servers for their later perusal. Similar to HIPAA when your PHI data is compromised, or worse: similar to the TMobile breach, AgileBits would have to disclose that your data has been compromised, set up fraud monitoring, etc. etc. That still doesn't eliminate the fact that your vault may have been compromised, and that while they could easily get a backup of your data restored, you'd have to go into that vault, change the password and credentials to that vault, and quite possibly every password for every entry in that vault.

That's a HUGE problem, which all of that stems from the breach at their servers being the attack vector.

Now, with a local vault, not only would they have to have physical access to where your vault is located, but they would also have to have physical access to a running copy of 1Password to attempt to open that vault. To get physical access to that vault, they would have to have physical access to your Mac or your PC (the physical computer or disk to where that vault exists). If in your house, they'd have to break into your house, which is another layer of security. Say you're smart enough to keep your vault on a disk in a safety deposit box in a bank. Well, that's 4 layers of security there. You'd have the separate disk containing the vault, the laptop, and the layer of security controls needed to access the box holding the disk at the bank, and the controls accessing the physical vault at that bank.

Wash/rinse/repeat for if it's at a storage unit, or any other location. That's a LOT of security that could be added to a single local vault that people tend to overlook for convenience at the price of $3/month without any means of getting their data back should they cancel the service. But hey, we're the ones that are archaic because we have a standalone app that has worked for years.

My other question is , will 1Password with subscription allow you to export your data? I imagine yes.

You have the ability to export your data, yes, so you'd have to do that prior to canceling the subscription, but that doesn't alleviate the issues above regarding your data not actually being data that belongs to you under the law.

Currently I am happy using the IP7 but afraid I buy an EnPass license and then they too turn subscription. Everyone is turning subscription even that MSecure one.

That's the problem we all are having, which is why we're in this thread, discussing alternatives and what to do.

BL.

 

[toasted ICT]

@MacBH928
Maybe try Strongbox for mac and ios.
Strongbox is already either subscription or one off "lifetime" license..your choice.
Else try safeincloud.
or scroll back to beginning of this thread and have a read...lots of folks with good ideas here.

 

[ggibson913]

I used to use LastPass Premium which was $12 per year but they they upped their rate to a much higher level. I use 1Password and pay my $36 per year subscription fee gladly as it is well worth it in my opinion to have the ability to maintain my many online accounts with strong passwords that 1Password affords me.

 

[bradl]

@MacBH928
Maybe try Strongbox for mac and ios.
Strongbox is already either subscription or one off "lifetime" license..your choice.

Strongbox is an option, though I haven't seen much on if it uses local vaults and not forcing you to use a cloud option. That's why some are still on the fence for that.

Else try safeincloud.

or scroll back to beginning of this thread and have a read...lots of folks with good ideas here.

The only problem people have with SafeInCloud is that they are not sure where the developer is from, and that it is a 1-man shop. The developer appears to be Russian, but no-one knows for sure. But if he decides to close up shop, that's it. Otherwise, it is a viable option.

I used to use LastPass Premium which was $12 per year but they they upped their rate to a much higher level. I use 1Password and pay my $36 per year subscription fee gladly as it is well worth it in my opinion to have the ability to maintain my many online accounts with strong passwords that 1Password affords me.

Do you store your passwords in the Cloud? Do you have your choice of what cloud option you would like to use? Because with 1Password 8, you are giving up some of those options. And should you cancel your subscription, there is a chance that you could not be getting your data back, as it will only exist on 1Password's servers.

BL.

 

[toasted ICT]

Strongbox is an option, though I haven't seen much on if it uses local vaults and not forcing you to use a cloud option. That's why some are still on the fence for that.

Suggest take a look at their website....all clearly described there with screenshots and there is a Feature Comparison Table that's useful.

• store your database where you want – icloud, dropboox etc or host your own SFTP, WebDAV
• OR Local only : database on your devices…. Can import and export from desktop via LAN, Airdrop etc
• Uses Autofill with Safari so no browser extension required
• Opensource Keepass based
• No electron and no browser extensions means lower threat profile
• Native App on both iOS and MacOS platform
• Lots of other features
• You can buy either subscription or one off "lifetime" license..your choice.

Re SafeInCloud: I moved from 1password to SafeinCloud a couple of years ago and have used it since then. Zero problems. Its big advantage is it does Mac, iOS and PC. As you rightly say its a small developer based on Moscow ... but they have been operating since 2012 (see their website) with no issues so there is that. They seem bonafide : DB summary

I moved to Strongbox from Safeincloud because of these differentiators (for me anyway) : Strong box uses open source Keepass AND it uses Autofill with Safari so no browser extension required. I dont really need PC support so I am happy to give that up.

Plus I like the attitude of the developer. They are not condescending.... reading their help desk is indicative Strongbox Help Desk .....as is any email correspondence with them. Much better than the "you dont understand because your an idiot, just do what we say, we are right always" attitude displayed at 1P.

I have zero relationship with this or any other password manager other than as a paying customer.

 

[mj_]

Currently I am happy using the IP7 but afraid I buy an EnPass license and then they too turn subscription. Everyone is turning subscription even that MSecure one.

That is very real and, to be honest, very likely possibility. Enpass has already started to move in that direction. You can still buy a perpetual lifetime license for $79 but from what I understand some new features will only be available to those on a subscription.

 

[MacBH928]

Wash/rinse/repeat for if it's at a storage unit, or any other location. That's a LOT of security that could be added to a single local vault that people tend to overlook for convenience at the price of $3/month without any means of getting their data back should they cancel the service. But hey, we're the ones that are archaic because we have a standalone app that has worked for years.

You make very good arguement, not only its subscription but forced online cloud storage is the second problem that makes 1P not a favourable choice for me.

@MacBH928
Maybe try Strongbox for mac and ios.
Strongbox is already either subscription or one off "lifetime" license..your choice.
Else try safeincloud.
or scroll back to beginning of this thread and have a read...lots of folks with good ideas here.

StrongBox is Mac and iOS. If that is how you roll its a good replacement.

Suggest take a look at their website....all clearly described there with screenshots and there is a Feature Comparison Table that's useful.

• store your database where you want – icloud, dropboox etc or host your own SFTP, WebDAV
• OR Local only : database on your devices…. Can import and export from desktop via LAN, Airdrop etc
• Uses Autofill with Safari so no browser extension required
• Opensource Keepass based
• No electron and no browser extensions means lower threat profile
• Native App on both iOS and MacOS platform
• Lots of other features
• You can buy either subscription or one off "lifetime" license..your choice.

Re SafeInCloud: I moved from 1password to SafeinCloud a couple of years ago and have used it since then. Zero problems. Its big advantage is it does Mac, iOS and PC. As you rightly say its a small developer based on Moscow ... but they have been operating since 2012 (see their website) with no issues so there is that. They seem bonafide : DB summary

I moved to Strongbox from Safeincloud because of these differentiators (for me anyway) : Strong box uses open source Keepass AND it uses Autofill with Safari so no browser extension required. I dont really need PC support so I am happy to give that up.

Plus I like the attitude of the developer. They are not condescending.... reading their help desk is indicative Strongbox Help Desk .....as is any email correspondence with them. Much better than the "you dont understand because your an idiot, just do what we say, we are right always" attitude displayed at 1P.

I have zero relationship with this or any other password manager other than as a paying customer.

SafeInCloud good be a very good option if it was a bigger organization, 1 man team is no go for me especially when its a password vault. One day he is drunk or something releases bad code and locks your files in an auto update AppStore.

That is very real and, to be honest, very likely possibility. Enpass has already started to move in that direction. You can still buy a perpetual lifetime license for $79 but from what I understand some new features will only be available to those on a subscription.

I think Enpass went the other way around, they were subscription only now they have a license. I think they are trying to collect whatever is dropped off 1Password.

 

[MacBH928]

Guys I found an open source look a like to 1P: KeeWeb

Downside: no mobile apps 😬 Killer I know, but one can hope its a viable option in the future.

 

[toasted ICT]

@MacBH928 Link goes to nitrokey mate

 

[rforno]

It looks great --- but for those concerned, it seems KeyWeb is Electron too. ;/

 

[Apple_Robert]

Strongbox has been updated for Silicon.

 

[bradl]

Strongbox has been updated for Silicon.

That's good to know. Right now, it appears that the big alternatives appear to be Strongbox, SafeInCloud, and Bitwarden, with Bitwarden taking up the rear because Electron.

BL.

 

[eltoslightfoot]

That's good to know. Right now, it appears that the big alternatives appear to be Strongbox, SafeInCloud, and Bitwarden, with Bitwarden taking up the rear because Electron.

BL.

All I will say is Bitwarden has been working flawlessly for me on Windows and Android. Oh wait....no mac or iOS anymore...

 

[dandelionclock]

Been sticking with 1P 6 and intend on using it for as long as it can on the latest OS…. Doesn’t have a wrong safari extension anymore but I can cope with it.

 

[MacBH928]

@MacBH928 Link goes to nitrokey mate

sincere apologies, i fixed it.

That's good to know. Right now, it appears that the big alternatives appear to be Strongbox, SafeInCloud, and Bitwarden, with Bitwarden taking up the rear because Electron.

BL.

are you sure? I didn't imagine foss apps will go electron. Everyone is hating on electron.

Been sticking with 1P 6 and intend on using it for as long as it can on the latest OS…. Doesn’t have a wrong safari extension anymore but I can cope with it.

I won't be surprised if they release an iOS update that makes the mobile apps not sync with 1P7. I paid twice for that, now they might take it away.

 

[MacBH928]

I found a new one: Roboform has free tier but otherwise subscription which brings us back to square 1.

So for EnPass checks all the boxes for me:-

*license
*desktop and mobile apps
*pleasant GUI
*Not electron I think

I wish it was open source though.

It looks great --- but for those concerned, it seems KeyWeb is Electron too. ;/

Sheesh , I was going to ask how did you figure out then I did a search and got this:

KeeWeb | Apps | Electron

Free cross-platform password manager compatible with KeePass

www.electronjs.org

I think maybe I should accept electron. Everything is electron now.

 

[Lioness~]

Ha, haven’t heard this until now. Oh, I am still on 7, so we’ll see when I have to upgrade?
If I’ll get a prompt or so?

Just went subscription with TextExpander after struggling myself through a period using PhraseExpress.
The release to get back with TE was almost cathartic 😂

Will not waste time to find other replacements for 1Password.
It’s about choose what apps are worth the subscription- because that’s life now 🤑😶🙃🙂
Like it or not.

 

[MacGizmo]

I would continue using 1Password 7, but it has a known bug with the latest OS (possibly older OS versions as well) where every time you use it to auto fill a password on a site, it asks you to either update or save it as a new password… even for sites you already have the password saved in 1P. It’s incredibly annoying and unproductive. If I knew they fixed the bug, I might give 1P a try… but I’m not willing to experiment.

 

[bradl]

Been sticking with 1P 6 and intend on using it for as long as it can on the latest OS…. Doesn’t have a wrong safari extension anymore but I can cope with it.

if you stay Intel for your Mac, you should be good up until Apple completely drops support for x86 CPUs in the future releases of MacOS. If you went Silicon, it would work up until Rosetta no longer works. I’m in that same position, but will be getting a new Mac when the next ones come out. And since Apple said that they would be done with Intel in the next 2 years (that was from this time last year), I’d probably say that we’d have no more than 2 years left.

Ha, haven’t heard this until now. Oh, I am still on 7, so we’ll see when I have to upgrade?
If I’ll get a prompt or so?

Just went subscription with TextExpander after struggling myself through a period using PhraseExpress.
The release to get back with TE was almost cathartic 😂

Will not waste time to find other replacements for 1Password.
It’s about choose what apps are worth the subscription- because that’s life now 🤑😶🙃🙂
Like it or not.

If you have a standalone license for 1P7, you’re lucky! It will continue to work forever, Intel, Silicon, or otherwise. You’re in the sweet spot because if you’re on Intel, and then plan to get anything Silicon, you can grab the Silicon app now, buy the Mac, install the app, apply your license, import your vault, and you’re good.

BL.

 

[Lioness~]

If you have a standalone license for 1P7, you’re lucky! It will continue to work forever, Intel, Silicon, or otherwise. You’re in the sweet spot because if you’re on Intel, and then plan to get anything Silicon, you can grab the Silicon app now, buy the Mac, install the app, apply your license, import your vault, and you’re good.

BL.

Thanks, good to know 👍🏼

I already have 7.8.7 so I can use that a few yrs anyway.
It supports both silicon and intel, I read just a moment ago.

Forever is quite awhile, but I don’t have to get another subscription anywhere soon. Wonderful!
I do plan to get the larger iMac M something, when Apple release them.

Again good info, appreciate it ⭐️

 

[bradl]

Thanks, good to know 👍🏼

I already have 7.8.7 so I can use that a few yrs anyway.
It supports both silicon and intel, I read just a moment ago.

Forever is quite awhile, but I don’t have to get another subscription anywhere soon. Wonderful!
I do plan to get the larger iMac M something, when Apple release them.

Again good info, appreciate it ⭐️

So your upgrade path is simple: if you’re on Silicon, Time Machine backup your Mac, get the new iMac, TM restore, and you’re good.

If on Intel, do the same thing (TM backup/restore), then if you haven’t done so yet, download the Silicon version of 1P7, then install that version, then you’re good.

Wash/rinse/repeat if you do clean installs of the newest release of MacOS, and you’re set.

BL.

 

[MacBH928]

Ha, haven’t heard this until now. Oh, I am still on 7, so we’ll see when I have to upgrade?
If I’ll get a prompt or so?

Just went subscription with TextExpander after struggling myself through a period using PhraseExpress.
The release to get back with TE was almost cathartic 😂

Will not waste time to find other replacements for 1Password.
It’s about choose what apps are worth the subscription- because that’s life now 🤑😶🙃🙂
Like it or not.

it is , but i would rather support license models and not give in. To each his own. In addition, new 1Password forces you to store your data in the cloud. I don't want that even for free.

if you stay Intel for your Mac, you should be good up until Apple completely drops support for x86 CPUs in the future releases of MacOS. If you went Silicon, it would work up until Rosetta no longer works. I’m in that same position, but will be getting a new Mac when the next ones come out. And since Apple said that they would be done with Intel in the next 2 years (that was from this time last year), I’d probably say that we’d have no more than 2 years left.



If you have a standalone license for 1P7, you’re lucky! It will continue to work forever, Intel, Silicon, or otherwise. You’re in the sweet spot because if you’re on Intel, and then plan to get anything Silicon, you can grab the Silicon app now, buy the Mac, install the app, apply your license, import your vault, and you’re good.

BL.

I have a good feeling they will upgrade their mobile apps and plugins so they do not work with 1password7 or work problematically.