Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
1Password migrants thread
- Thread starter MacBH928
- Start date
- Sort by reaction score
It was my daughters account that got locked and she couldn’t access anything for over 2 weeks while it got straightened out.
Well, to be fair, 1Password and Bitwarden are actually both.
Apple Password is local; I’ve put my phone in airplane more and I was able to access the password. It’s when you’re locked out of your Apple ID, it won’t let you in.
Unless there have been any recent changes, 1Password has you storing your vault on their servers. That is why a lot of people have migrated away from them.
BL.
No, that has never been the case. You can put your device on airplane mode and still access your passwords. Their servers are just to sync the devices.
I’ve had 1Password for ages (I think 7-8 years), and there is a site I go to for work, with zero signal and no WiFi. I have been able to access my password from my phone, without any issue.
I mean, it is there. Encrypted, salted, hashed, and probably other things. My point is you don't need access to the cloud to access your passwords.
But isn’t it the same for Apple passwords even with a locked account? You can access them locally. Or isn’t it possible because Apple locks everything?
You are completely correct. All passwords are kept on your own computer. Also, it's trivial to create an export of your entire account which can be accessed with a text editor (for almost all content) or other home-grown tools. The export is just a compressed archive of a JSON string and other binary content. There is no real risk of losing access to your passwords due to 1Password server problems, if you are diligent about keeping backups.
Same for Apple Passwords and Bitwarden.
For Apple even if the lock your account.
Can you tell more... Wasn't it possible to enter the PIN code of the iPhone or use Face ID anymore?
Someone tried to get into her account, so Apple locked it (despite her having a 20-character password and 2FA enabled). She had to prove who she was to get back in, and that took over 2 weeks. While I am glad she was safe, I am confident her account was safe, and Apple went overboard (like most big tech companies do).
In that 2 weeks, she couldn't access anything Apple-related. She would go on her devices, and she would get pop-ups to enter her Apple ID password, making the devices useless, because she couldn't get past the pop-ups.
I have quite a bit of experience working with Apple support as well as 1Password support. Neither company can help you if you lost the credentials to access your vault. But for other problems, I have much greater confidence that 1Password support would resolve any access issues than I have that Apple would.
Many times I've given up with Apple support when trying to get something resolved. Eventually I just learn to live with a bug. But, this is not an acceptable resolution when one is having trouble accessing credentials to allow you to log in to your bank account.
Local backups make this less critical, but most people won't be diligent in maintaining them. Also, it is very important that those backups are made to an encrypted volume that is not left mounted. This is another risk area for the less sophisticated user.
I hope Apple learns to quickly escalate support requests involving access issues. If I had been locked out of my bank and many other critical sites for two weeks, it would have been a disaster.
I'm an Apple fanboy in that I think Apple is very well intentioned. I'm not a fanboy with respect to their competence. I suspect they haven't thought through the scenario where some unknown person tries to hack a user's iCloud account and that user is seriously impacted well beyond the Apple ecosystem as a result.
Many times I've given up with Apple support when trying to get something resolved. Eventually I just learn to live with a bug. But, this is not an acceptable resolution when one is having trouble accessing credentials to allow you to log in to your bank account.
Local backups make this less critical, but most people won't be diligent in maintaining them. Also, it is very important that those backups are made to an encrypted volume that is not left mounted. This is another risk area for the less sophisticated user.
I hope Apple learns to quickly escalate support requests involving access issues. If I had been locked out of my bank and many other critical sites for two weeks, it would have been a disaster.
I'm an Apple fanboy in that I think Apple is very well intentioned. I'm not a fanboy with respect to their competence. I suspect they haven't thought through the scenario where some unknown person tries to hack a user's iCloud account and that user is seriously impacted well beyond the Apple ecosystem as a result.
IMO, if you have the passwords no one should lock you out of your account. If you have 2FA enables that is even more reason. The only time support should get involved when i contact personally and prove I myself was locked out.
Yahoo locked me out of the email account although I have the password because I couldnt remember "My favorite artist" that i put in as a secret question when i signed up.
despite all of this, i am sure there is something in the TOS that says they can lock you out whenever they want and you cant complain.
I think big tech companies will do this to peoples accounts to protect their name and any possible damage, not for the customer.
That is what I use.
The Windows/Linux version is free and open source: https://pwsafe.org/
The MacOS/iOS version just uses the same encryption engine source code so the vaults are fully compatible.
interesting i thought pwsafe was depicated by the author. the only community FOSS pw manager i know are KeePass and KeePassXC.
what you think about it? is there in browser autofill?
I don't quite understand the versions of pwsafe, but which version do you think is deprecated?
https://github.com/pwsafe/pwsafe/releases shows plenty of recent work on the Windows version and some work on the less capable Linux version.
https://pwsafe.org has links to the "Latest Windows versions", but that takes you to a site offering versions for all platforms. https://pwsafe.org also has links to "Popular Clones" which includes the App Stores for Mac and iOS.
What author are you talking about?
I thought the original windows version that you linked to is deprecated and the mac version: https://pwsafe.app/ is a spinoff/fork of it.
I didn't realize the original is still being developed. It doesn't help the screenshot they are using on the website is from Windows 7.
Thanks, I tried pwSafe after Minimalist announced EOL.
Unfortunately I can't find a way to import TOTP. It seems like the pwsafe format doesn't support importing TOTP, and I've tried CSV, text, even KDBX and using the original Password Safe on a Windows machine. I'd have to set up all the TOTP codes individually again.
It's still worth trying pwSafe if you're looking for a 1Password alternative that doesn't require a subscription, and you use Safari.