Why Password Managers?
Our tool Spybot Identity Monitor shows that your data can get lost even with reputable large companies. Strong passwords that are unique to each online service you use are a key factor to security. But can you remember dozens of complicated passwords? A password manager helps you to store passwords in a secure way, without a bunch of stickies on your screen. This of course means that password managers need to be even more secure, since if they would get hacked, not just one but all of your passwords might be at risk.
Our recommendation for the average user is Sticky Password. For experienced users with their own trusted cloud infrastructure, we also recommend KeePass.
Even if you pick the best password manager available, or even if you store all passwords in memory, using Two Factor Authentication where possible is a good idea (we’ll add a tutorial about that soon).
KeePass is our long time favorite and recommendation for experienced users.
It's easy to use as a password storage on a single computer. If you want to integrate it with your browser, you need to find and install a fitting browser plugin manually. The KeePass website will help you find such plugins.
KeePass stores its password archive where you want. This means you are not forced to use the password managers cloud, like most services do. If you want to share it across devices, you can pick the cloud service of your choice.
KeePass itself is a Windows application. There are many variants for other platforms listed on its website. We recommend MacPass for macOS users and MiniKeePass for iOS users.
KeePass supports Advanced Encryption Standard (AES, Rijndael) and the Twofish algorithms, and SHA-256 for hashing master keys. It allows to set up archives that require multiple factors to unlock, including passwords, key files or Windows accounts.
DashLane comes with a free version that runs on one device and manages up to 50 passwords. It has been editors choice in the Apple App Store, and Best App on Google Play. Due to the issues below, we cannot recommend the use of DashLane.
DashLane allows syncing using DashLanes own servers, or keeping the data just on your device. It does not allow you to synchronize your data using your own preferred cloud service.
DashLane is available for Windows, macOS, Android, iOS and Linux.
Once installed, Dashlane contacts gate.hockeyapp.net. HockeyApp is, quoting the service itself:
Security (pre May 15th, 2019)
At the same time, DashLane requests the right to share this Encrypted Sensitive Information that they say they have no access to with third party:
Having lost faith that Encrypted Sensitive Information is out of reach for DashLane, the next part lowers the trust even further:
Sticky Password is our general recommendation for all users who do not have their own cloud infrastructure or need the complex features of KeePass. Plus, we love that they support manatees!
Sticky Password can store your passwords locally, or in their cloud (hosted by Amazon) if you want to share them between devices. For enhanced security and privacy, it also offers a WiFi only synchronization that allows you to have your passwords on all your devices without using an external cloud not under your control.
Sticky Password is available for Windows, macOS, plus Android and iOS smartphones.
Sticky Password uses AES-256 encryption and optionally enforces two-factor authentication. Our favourite feature is the local synchronization where your encrypted data does not even leave your network. Access to your database for new devices can be blocked as an additional method of protection. Read their Security Whitepaper for more details.
Contrary to some other password managers, Sticky Password does not use third party tracking or spyware modules.
As a Safer-Networking customer, you're entitled to a 50% discount if you buy it by following our product link. Please note that while we will get a share of this price, this description is written independently and our recommendation stands even without.