Glad to hear that works! So this is initiated on your Mac with 1password v7? I’ll look for that setting, but if I’m still gettin synch through the cloud, I’m hesitant to mess with changing anything.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
1Password migrants thread
- Thread starter MacBH928
- Start date
- Sort by reaction score
Glad to hear that works! So this is initiated on your Mac with 1password v7? I’ll look for that setting, but if I’m still gettin synch through the cloud, I’m hesitant to mess with changing anything.
Not sure, what you mean.
I have setup WLAN sync within 1Password on my Mac and the iOS/iPadOS devices. Whenever I start 1PQ on any of the devices and 1PW is active on the Mac in the same network, they are synced. Works like this for years.
After much deliberation, I have today removed 1Password from all my devices, and am going to solely take Enpass for a spin one more time and see how that works.
It did not go very well previously on account of how Enpass seemed to handle password updations and changes and updating those changes into the database. Either I did not get that well previously, or something improved in two months, because it seems to be working adequately enough to inspire confidence and, thus, emboldened me to remove 1Password entirely and take Enpass for a solo drive.
1Password v7 was annoying enough of late, primarily because of its propensity to try and fill out fields on websites that did not need filling and that popover only worked to hide the underlying buttons for me, and v8 has taken that propensity to a whole new level - it just does not get better at all.
Furthermore, 1Password now loves to start itself whenever you open Safari (if 1Password was not open already in the background) and that is an annoyance for me. What if I just want to search something on the internet, or does Roustem in his infinite wisdom think that people must only be visiting websites with logins?
This is becoming incredibly annoying of late. In my opinion, initial versions of v7 were great still, until they took this popover fill-ups to this insane level and this v8 madness. It is not feasible to tolerate this anymore - they are not my spouses and children or parents.
In my testing today, Enpass seems to work the best for me, is much cheaper to boot - I had paid USD 0.99 for a year a couple of months ago. I tried out updating passwords on websites, Enpass reliably asks to update the database accordingly. It is possible to use Enpass directly on a website's 'change password' screen to fill in your old password and use Enpass to generate new passwords and fill them right there, like 1Password allows. This, I think, has become easier in these 2 months or it might be that I figured it out today. Then, Enpass reliably asks me if I want to update the newly changed password in the database.
Regular autofill is wonky, sometimes a double-click autofills the entries, sometimes it opens a new tab with the website. But, weirdly, Enpass works flawlessly just like 1Password does on mobile OSs - be it iOS or Android. Enpass does not clutter autofill dropdown menus on fields unnecessarily and I cannot tell you just how much of a relief that feels in using. It truly feels like a time-saver and makes up for the wonkiness and more clicks required for some actions in Enpass.
I now only have Enpass on all my devices, and will see for a few days how that fares. As of right now, it seems that I might have made the switch for good.
It did not go very well previously on account of how Enpass seemed to handle password updations and changes and updating those changes into the database. Either I did not get that well previously, or something improved in two months, because it seems to be working adequately enough to inspire confidence and, thus, emboldened me to remove 1Password entirely and take Enpass for a solo drive.
1Password v7 was annoying enough of late, primarily because of its propensity to try and fill out fields on websites that did not need filling and that popover only worked to hide the underlying buttons for me, and v8 has taken that propensity to a whole new level - it just does not get better at all.
Furthermore, 1Password now loves to start itself whenever you open Safari (if 1Password was not open already in the background) and that is an annoyance for me. What if I just want to search something on the internet, or does Roustem in his infinite wisdom think that people must only be visiting websites with logins?
This is becoming incredibly annoying of late. In my opinion, initial versions of v7 were great still, until they took this popover fill-ups to this insane level and this v8 madness. It is not feasible to tolerate this anymore - they are not my spouses and children or parents.
In my testing today, Enpass seems to work the best for me, is much cheaper to boot - I had paid USD 0.99 for a year a couple of months ago. I tried out updating passwords on websites, Enpass reliably asks to update the database accordingly. It is possible to use Enpass directly on a website's 'change password' screen to fill in your old password and use Enpass to generate new passwords and fill them right there, like 1Password allows. This, I think, has become easier in these 2 months or it might be that I figured it out today. Then, Enpass reliably asks me if I want to update the newly changed password in the database.
Regular autofill is wonky, sometimes a double-click autofills the entries, sometimes it opens a new tab with the website. But, weirdly, Enpass works flawlessly just like 1Password does on mobile OSs - be it iOS or Android. Enpass does not clutter autofill dropdown menus on fields unnecessarily and I cannot tell you just how much of a relief that feels in using. It truly feels like a time-saver and makes up for the wonkiness and more clicks required for some actions in Enpass.
I now only have Enpass on all my devices, and will see for a few days how that fares. As of right now, it seems that I might have made the switch for good.
Last edited:
Can this be in addition to synching over cloud storage like DropBox? I’ve just never tried that. For all I know it’s setup, I’ll have to check. If I can continue to have 1PWv7 function and stay synched between my devices, I may continue using it until a Mac OS update kills it. My impression is that 1PWv7 works with BigSur.
Last edited:
Amazon’s Twitch Hack Shows Top Gamers Rake In Six-Figure Payouts
👆🏻 This kind of news makes me scared of using cloud based password managers. When it happens the vendor would have already made his profit and give you the "You are on your own, read the ToS"
I am on all latest 1P7 and things seems fine and working, albeit I am on Mojave.
I can’t argue with your comment to me, but I’ll mentionit’s just that $80 is a lot for a license lifetime. In the past when you bought a regular license, my understanding, it was good for the current OS and you might have to pay for an upgrade to the next OS version. To me “Lifetime” triggers a different impression, but I’m not sure. 🤨
One of the other password managers was charging $10 a year, which means you’d pay less with this kind of subscription pricing until you hit 8 years, and there a subscription makes more sense, if it is a quality product. With $36 a year sub, , paying the $80 you easily come out ahead with the latter depending what lifetime means. 🤔
The main idea with license is that you do not have commitment, the software will always work. you don't have to be connected to the internet. Honestly I might consider subscription if they let 5 year plans but they seem to have 1-2 years only you can't pay ahead.
At least if I pay ahead I know for sure it will work 4-5 years in the future. I don't want to hear your credit card has been decline the app no longer works.
Very interested in hearing the feedback. I haven't made the switch yet but EnPass is where I am heading. I hope most other people jump on the EnPass bandwagon and create the 1Password arch enemy. Hopefully this gives more funding to Enpass to improve the software and keep the lifetime license model and not turn evil like 1Password.
The only thing that scares me is that 1Password would bring back the local vaults and license model and everyone jumps back.
This is good to know. I think there is also a way to revert app versions directly on the iPhone so I may give 7.8.x a try.
I think what AgileBits is thinking of doing, especially given the form they posted on their site, is offer the same functionality Bitwarden is: be able to run your own self-hosted server. If so, then this would be a pittance offering; like offering you a black bean veggie burger after taking all meat off the menu, and saying "well, it's still a burger!"
BL.
This doesn't phase me as a Bitwarden user. Their whole business model is based around security, unlike Twitch. The code is already available for everyone to see. Worst case if they were hacked the bad actors would get my encrypted blob. If they were able to get into it (which is a big "if") I would have long changed my passwords before then.
The problem there, though, is that they would still have the blob, forcing you to make those password changes to begin with. That is the big concern: Not that they can get into your blob, but that they have your blob.
BL.
If they have a blob they can't make use of because they can't decrypt or the owner used double blind passwords, there is no real problem.
Wrong. Who said passwords would be the only means of attack to get into a blob?
They could use that blob to find as many different attack vectors as they see fit. And if they find the right ones that do not require any passwords, they could use that attack vector on any other blobs they have taken from that breach, and get into those blobs with that attack vector. Passwords wouldn't have a thing to do with it if they were able to attack and gain access to that blob without it.
So your blob would be used as the means to find different attack vectors to get into other blobs, all because they had your blob to begin with. Yes, you would have changed your passwords to mitigate the problem, and that is fine and dandy for you; not so fine and dandy for anyone else.
BL.
I don't care about other people's blobs. I care about my personal security. As with anything, there is going to be risk. All you can do is try and minimize exposure. Even with local hosting there are risks.
There is nothing wrong with Bitwarden's setup that I can see much less Strongbox etc.
I think the thread has been going in circles for a while now, because some here are looking for the A+ app in every area checklist.
In some cases, you should care about other's blobs. Again, if there were a breach, and you've made changes to your passwords in your blob, while you are totally secure in them not getting to your passwords (because you've changed them), that leaves the format of the blob to be the means for any bad party to attack. And should they find a way to crack the format of that blob, they could then revisit your blob or any other blob to get access to those passwords.
Again, you're safe because you've changed your passwords to mitigate the problem, but the problem is that the breach shouldn't have happened to begin with, and that issue completely with the vendor/service you're using. The mitigation you've implemented is the equivalent of drawing another line in the sand after your enemy has already crossed the first line you drew.
And to top that off, that service would then have a software architectural problem to handle, which is to either patch/fix the hole(s) in the format of the blobs they create, or go to a new format altogether, still leaving your blobs completely subject to such cracking, should another breach occur.
And again, all of this because they got hold of one person's blob, hacked at it, and found a way to get into everyone else's blob, including yours.
BL.
Any information from Bitwarden and Strongbox kept in the cloud is secured with multiple layers including using Cryptomator. If bad actors gets inside one of those servers, the worst they can do to me is delete the files, which are backed up multiple places locally and elsewhere. They won't be able to access any of my stuff. Customers who don't take extra steps to secure their account in addition to what the app they are using provides, may be in for a rude awakening one day.
I agree; however, while mitigation is a workaround, the bigger issue is how those bad actors got inside one of those servers, as that is what caused you to mitigate the problem. And that is the main argument of those who want to be in control over their vaults: the argument that any type of breach that could potentially expose their data - the blobs, vaults, data contained in those blobs/vaults, or otherwise - is completely out of their hands and control.
BL.
Run a Wan Server from this Mac to synch with iOS or Android devices.
Unlock 1Password on your iPhone or iPad and select Settings > Sync to begin syncing. When prompted enter the secret shown below. cc ewer 6tgfh
Ok I found the above on 1PWv7 on my Mac, and I could turn it on. But when I followed the sequence unlocking 1PW on my iPhone, selected Settings>Sync a window never popped up to allow me to enter the code to connect with my Mac over Wifi. And when I hit sync on my phone, it synced with my primary vault on Dropbox. That's good news but I don't know why the Wifi synching is not working because when you turn on WLan Server is also shows your primary vault (my case: DropBox) with a checkmark so it will be synced too so that does not look like it should be a conflict.
Exactly.
"If for some reason Bitwarden were to get hacked and your data was exposed, your information is still protected due to strong encryption and one-way salted hashing measures taken on your Vault data and master password."
It's also looking that Twitch was a clown show for security:
I reverted back to version 7.7 on my M1Mini and was able to sync over WLAN server to My iPhone and iPad while using the latest version of 1P on IOS and iPad OS
Exactly.
"If for some reason Bitwarden were to get hacked and your data was exposed, your information is still protected due to strong encryption and one-way salted hashing measures taken on your Vault data and master password."
It's also looking that Twitch was a clown show for security:
You're still missing the point. The point isn't how secure your vault is protected; it is the fact that the service was breached/hacked. People only are equating their passwords to be their data, when the entire blob/vault is also your data. If others can get and physically copy off your vault, that is just as big of a security issue as them having full access to your passwords. Your vault is the least of your problems if the service can't keep your data secure; in fact, if they couldn't do that, you should be looking for a better service, let alone question why you would trust your data to a service, when you then also give up control of your data to that service.
BL.
In the 1Password app on your iDevice, if you go to Settings - Sync - Sync Service, it probably indicates "Sync with Dropbox". If you tap on that, you should be able to choose a sync method, with WLAN being one of them.
BL.
Currently only a few tech enthusiast know about the coming 1PW version. There might be a small **** storm when it is released and the masses realize, that local vaults are missing. Other countries may be different, but here in Germany most companies would not allow storing password on some cloud server.
People make mistakes, so there might be other attack vectors. And the best encryption is of no use, if the password is sent to the internet, e.g. because of some stupid mistake, which happened to me before.
I can not help with that. I configured it years ago and it is just working since then.
I'm not missing anything. That was a quote from the Bitwarden website addressing the question "what happens if Bitwarden gets hacked?" I'm well aware that the blob is my data. Someone was saying that the fact that a video game streaming service got hacked made them nervous. Unlike Twitch, Bitwarden is a company dedicated to password security and keeping that data secured. Worrying about their servers getting hacked isn't keeping me up and night but worst case if they did and someone got my encrypted blob they still would have a huge, different mountain to climb to get my unencrypted data.
First of all I deleted 1P from my Mac mini iPhone and iPad basically starting fresh. I had version 7.7 Mac version but I believe there is a site that has all versions you can download just google for it.I restored 1P from a backup on my mini and installed 1P on my iPhone and iPad . From there I went into 1P on my Mac and went to sync WLAN server and was able to sync to all of my devices . I believe you stated earlier it would only sync through dropbox . If you only want to sync through wifi you may want to make sure dropbox and other services are not checked under sync that worked for me.
Hmm, anyone having problems importing passwords into icloud keychain? I'm trying to export/import from 1password, but latest monterey version is reporting 0 imported passwords if try to open whole big csv. If I use a small sample, it seems to work.
Keychain doesn't accept all passwords that 1Password does. For example, passwords with no username are not accepted, as well as passwords with no URL. These cause the import to choke or stop, sometimes. You need to clean up your CSV to exclude these items first. In addition, your OTP tokens will not import automatically. You'll have to move those manually afterwards.