Attention! 1Password 7.8 update for iOS 15 makes it (almost) practically useless for standalone vaults!!

[usagora]

Then your method is even worse; you still don't deal with the issue of that the malicious party actually HAS your vault. Again, it's a workaround to the problem; you're mitigating any further ways to access your vault, but don't resolve the issue that they already have physical hands on your vault. Your issue resolves the former problem, but not the latter. It is the latter that is the concern, because without the latter problem (the issue of them having physical hands on your vault), you wouldn't have to try to mitigate the problem. that method would effectively be drawing a newer line in the sand behind the first line.

This is like saying you wouldn't have to have fire insurance if the world were perfect. Ok, well guess what? We don't live in a perfect world. No system is completely secure - no, not even your own local system.

People said the same about Lastpass, Passwordstate, and others. Look at what happened.

Most wouldn't want to take that risk, and that risk is the crux of the problem.

BL.

I googled the first one, and found this:

Cybersecurity Education & Terminology - LastPass

Learn the basics of cybersecurity education and terms so you can prevent and respond to habits to better protect yourself and your business.

www.lastpass.com

 

[Allograft]

while others are worried about the safety and sanctity of their data, and wanting to truly be in control of their data.

Yes, this. Well, first I dumped eWallet for 1Password, now, it looks like 1Password is at the morgue. Not sure about my next turn.

 

[hideous cheese]

Without getting too much into arguments about subscription models, for me 1Password is evolving away from my fairly basic needs. I have three devices in the Apple ecosystem and no need for family-sharing or cross-platform option etc.

For some there will certainly by value in subscription, but all I need is "1Password Lite".

In July I got my M1 iMac and was ready to buy the standalone 1Password 7. They moved to subscription only just prior to my proposed purchase. I'd happily pay for the App, but I don't see personal utility for me in this as a subscription.

Each iOS and MacOS release now seems to be advancing Apple's own built-in password functionality and pretty soon it will catch-up to my requirements.

 

[verdi1987]

I wonder if we can get some Mac websites to pick up this story. The fact is that AB has removed core functionality in order to move users to a subscription. For various reasons, many do not want to move to a subscription, or they require local vaults.

I think the only reason they did not remove local vault support for the extension on Mac is because people can easily revert to an old version. That isn’t easy to do on iOS.

The 1Password extension in iOS/iPadOS should be for 1Password 8 users and likely should be v8 on iOS. Let us revert to 7.7.8. They can submit it as a legacy app under a separate App Store entry.

 

[TwoBytes]

I wonder if we can get some Mac websites to pick up this story. The fact is that AB has removed core functionality in order to move users to a subscription. For various reasons, many do not want to move to a subscription, or they require local vaults.

I think the only reason they did not remove local vault support for the extension on Mac is because people can easily revert to an old version. That isn’t easy to do on iOS.

The 1Password extension in iOS/iPadOS should be for 1Password 8 users and likely should be v8 on iOS. Let us revert to 7.7.8. They can submit it as a legacy app under a separate App Store entry.

Macrumors! @arn this is a story right here.
1Password users around the world are heavily annoyed for being ransomed for data by...1Password themselves..

 

[Yptcn]

Has there been an update ? 1Password is working fine on both iPhone and iPad . I don't have a subscription .

 

[Seend1983]

Subscription is ****ing theft

 

[Seend1983]

What if we all reported the app to Apple? Isn't there some policy against removing functionalities?

 

[ddavid]

And this is happening: new 1Password update for iOS 15 doesn't work for standalone vaults, only subscriptions.


https://1password.community/discussion/comment/602340/#Comment_602340


View attachment 1837578

I bought 1Password years ago and have recommended it to everyone. Unfortunately, I don’t trust a company that arbitrarily and without warning screws over so many of its customes. I’m trusting them with a lot of valuable and irreplaceable information, and such erratic behavior is not reassuring.

Does anyone know how to export all data from iOS 1Password? I’d like to find a better product to use going forward as 1P‘s future seems uncertain.

 

[doboy]

Mine works fine without a subscription on iOS 15 with the latest version of 1Password. I typically don't update but got a new phone so updated to the latest. Maybe I'm grandfathered in somehow?

 

[verdi1987]

Mine works fine without a subscription on iOS 15 with the latest version of 1Password. I typically don't update but got a new phone so updated to the latest. Maybe I'm grandfathered in somehow?

No, the Share Sheet extension is gone. The other fill method is still available, but it won't work on non-username/password fields 1Password doesn't detect as fillable.

 

[doboy]

No, the Share Sheet extension is gone. The other fill method is still available, but it won't work on non-username/password fields 1Password doesn't detect as fillable.

I've never used those features anyways so probably didn't notice. All I'm saying is I have no problem accessing my passwords in the app.

 

[Calion]

Are you able to do that after you cancel your subscription?

Yes, you still have full access to all your Vaults in the 1Password app, forever, after you cancel. You just can't add new items.

Are you sure that AgileBits will delete your data after you cancel?

Absolutely certain? No. But I'm already trusting their integrity in standalone mode.

Are you sure that your digital trail with AgileBits would be completely removed after cancellation?

See above.

Are you sure that should AgileBits be compromised, that if they don't delete your data, that your vault could be compromised?

No. It's rather the opposite; I have confidence that my vault could not be compromised.

Their in-house storage of my data is going to be *more* secure than it is on my computer. For instance, I'm sure their servers are behind better locks than are on my front door.

As I said, I'm already trusting that they're honest and good at their jobs. If they have backdoors or weaknesses in their online products, that is likely to also be true of their standalone product. They've gone to great lengths to clearly decribe and explain their security procedures.

If you store your data anywhere other than your own computers (including the old Dropbox method!) that introduces another attack vector, yes. But if you're *that* paranoid about security, you probably need more than a $50/yr product will give you—you need your own custom solution, complete with armed guards that you pay.

 

[eltoslightfoot]

Thank you very much for posting all of this. I'm still using 1Password 6, I refuse to succumb to the "subscription" model for this type of software. And I also know most standalone licenses on 1Password are having all kinds of problems with the latest versions of OSX.

Am in the process of moving everything over to BitWarden. I hate what 1Password is doing, so I'm gone.

I switched to Bitwarden months ago, it has been fantastic! I pay $10 a year for a premium account, which I see as a donation.

 

[bradl]

Yes, you still have full access to all your Vaults in the 1Password app, forever, after you cancel. You just can't add new items.

Absolutely certain? No. But I'm already trusting their integrity in standalone mode.


See above.


No. It's rather the opposite; I have confidence that my vault could not be compromised.

Their in-house storage of my data is going to be *more* secure than it is on my computer. For instance, I'm sure their servers are behind better locks than are on my front door.

As I said, I'm already trusting that they're honest and good at their jobs. If they have backdoors or weaknesses in their online products, that is likely to also be true of their standalone product. They've gone to great lengths to clearly decribe and explain their security procedures.

If you store your data anywhere other than your own computers (including the old Dropbox method!) that introduces another attack vector, yes. But if you're *that* paranoid about security, you probably need more than a $50/yr product will give you—you need your own custom solution, complete with armed guards that you pay.

See the 4th Amendment issue brought up previously. Should you be investigated for any reason, your 4A rights would not be applicable in the case of your data being seized from AgileBits, as they would be a 3rd party to the investigation of you.

That said, no-one has called the work of AgileBits’ developers into scrutiny; in fact, they are to be commended for the work they’ve put into 1Password over the past 15 years or longer. It is the business practice adopted recently that has people not happy with AgileBits.

As for security, my best method is to store it where I have and can control it: store it on my hardware (computer, NAS, etc.), back that up to an external disk, store that disk somewhere offsite that I have physical access to, and rotate that disk out as I see fit or as needed. The obscurity of needing to know my lifestyle makes it more secure for me, as compared to using a service that many other people use, making that service a known/popular target to attack. Dashlane and LastPass have proven that point.

Again, this is nothing against AB’s developers.. the problem is the change in their business practice, with leaving behind a core group of customers to chase the money in SaaS.

BL.