A Safe bet for password storage?
September 25, 2010 8:15 PM   Subscribe

How safe do folks think 1password plus dropbox for syncing really is? Would you store financial information this way?
posted by dougiedd to Technology (7 answers total) 4 users marked this as a favorite
1Password's encryption is quite good, and Dropbox encrypts everything between your computer and their server, as well as everything that lives on your account. Your 1Password master password will (almost certainly) be the weakest link in the chain.
posted by agentmunroe at 8:39 PM on September 25, 2010

i use something similar enough to say that it's safe enough for me. Just a statistic of course, but it works well.
posted by anadem at 9:52 PM on September 25, 2010

Personally, I still store that kind of stuff inside a Truecrypt volume inside my Dropbox, for one extra layer of protection. Dropbox will only sync when you unmount the volume, but at least it's smart enough to only sync changes; it won't try and reupload the whole volume every time. I've been doing this for 1-2 years now and am quite happy with it.
posted by Mr. Palomar at 9:56 PM on September 25, 2010 [1 favorite]

I keep all my information (financial and otherwise) in 1Password, and back it up on Dropbox. I use it for convenience. I'm a single user with a few accounts, and not a ton of money. If I had enough money that thieves would try to break into my computer and burgle, I'd probably have a money manager anyway. For a single user, 1Password/Dropbox is plenty secure, if you use a secure password.
posted by santaliqueur at 10:49 PM on September 25, 2010

I take screenshots of my passwords and store them as images. Use Dropbox or other secure online storage, that's pretty secure.
posted by markovitch at 12:55 AM on September 26, 2010

I store my KeePass passwords file on Dropbox, but I have a composite key file that's required to open said file that is NOT stored on Dropbox. I'm 100% confident that it would be nearly impossible to break this, since I'm pretty sure KeePass is 256-bit AES which, I think we've determined, would require more time than has passed to crack. Or something.
posted by disillusioned at 1:07 AM on September 26, 2010

(I use the composite key file in addition to a password, to be clear.)
posted by disillusioned at 1:08 AM on September 26, 2010

« Older How can I connect my desktop to the internet using...   |   Going from LA to LA of Anaheim. Newer »
This thread is closed to new comments.