How secure is Kee 2.0 (Firefox 57 addon) with keepass-plugin-rpc compared to LastPass?

I’m running Arch Linux and I need a convenient way to populate website logins using Firefox 57+ (which uses web extensions and thus closes some security holes found in prior versions). To keep the question simple, assume my o… Continue reading How secure is Kee 2.0 (Firefox 57 addon) with keepass-plugin-rpc compared to LastPass?

Why doesn’t KeePass use two factor / one time password generation to protect the database?

I’ve read KeePass kinda sorta tries as much as is possible to limit keyloggers (at least on PC).

But since you type in your master database password on many devices many times, there’s a huge chance that someone can at one … Continue reading Why doesn’t KeePass use two factor / one time password generation to protect the database?

Is there a password manager that combines a "master password" solution with a keystore solution?

There are many posts online debating the merits of “master password” or “deterministic, site-specific” password generation tools.

The general idea is that a function hash(“my_master_password”, “facebook.com”) could determini… Continue reading Is there a password manager that combines a "master password" solution with a keystore solution?