All Activity

I know, it's supposed to :-) I was asking about how the shared data _looked_ like, when you could share without AES-256 encrypting it. Pretty sure it was plaintext fields on each row, and a .ENPASSCARD-file with non-encrypted base64. anyway, wouldnt a "Copy All"-option sort your needs? The clipboard would contain all populated fields in the item, and would be intended for human-to-human sharing or external copying. (base64 is in essenence made for normalized transportation) --- Title: XCV Username: XCV Password: XCV Website: <URL> --- i also recall talking to enpass support one or two years ago about a web-based service for external password sharing, and they were "working on it" something like Bitwarden Send or Lastpass password sharing where you could have either password- or limited accessattempts on a generated weblink, not sure if that took of or not.

Oh sorry - yes, that seems to be base64-encoded, but base64-decoding it yields gibberish as the entire contents being shared are encrypted with the PSK. \

I was asking about the per-item 'Share'-function, not the 'Export' and how the non-PSK shared data looked like

No... the "Export" does a *full* export of all records, all fields, in plain text, password included (on MacOS). So much worse than exporting a single item in plain text. And then they go on talking about "due to data security reasons" we force you to encrypt with a PSK an individual item. So frustrating... Here's a sample screenshot.... (the appliances doesn't exist anymore - it's a 10yr old account)

I dont remember what the unprotected sharing looked like, but think it was All fields in plaintext, and a enpasscard in base64? @Amandeep Kumar If you want the Share-function to be a secure Enpass-only thing where there are no shared vaults involved, you could instead add a "Copy All Fields" for the items (you already have Copy Username, Copy Password, Copy URL, Copy OTP, Copy Email.. adding a Copy All wouldn't reduce security _that much_, possibly the fact that all fields resides in clipboard at thesame time, but atlest the clipboard would still be protected by the builtin timer that wipes records after some time by default. As a sidenote, in the Windows-app, there's a Print function where Enpass generates PDF-files. This can be used in some cases, but it's clunky, the content cant be highlighted and copied from and so forth, but if you want to share several fields at once, and the password isn't too long and complex, you can select an item, hit the Burger-menu (not the items three dots) -> File -> Print -> selected items. Then make sure that "Microsoft Print to PDF" is selected, which creates a local PDF instead of going to a physical printer. Due to a glitch i guess, the "selected items" is only available if you're viewing ONE vault, when All Vaults are selected (i.e you have many vaults) you can only select ALL ITEMS. I dont recommend the print-thing as a sharing-concept, just pointing out its there for the Windows Desktop app.

It's missing from your release notes, but Wear OS companion app has finally got it's facelift in 6.10.2, with way clearer layout and fixed scrolling issues. well done, but add it do the changelog

Old question, but you should setup a new passkey in enpass. The RFC-specifications for import / export of Passkeys aren't out YET. (but backup restore in enpass ofc covers the Passkeys)

Problem solved: Using webdav. I have to change the sync on all other devices, but it works, that's the main thing.

Amandeep, Can you please explain what you mean by your vague "due to datea security concerns"? I need to give my account info to other users. They do not use Enpass. I thus *MUST* send it to them in clear text. I do that via Signal. It's secured, and encrypted. There are ZERO security concerns with this process. But without the ability to now export an entire record from Enpass, I have to copy/paste each individual field in every account and copy/paste into a message/note so that I can then send it. It's incredibly time-consuming. All because you decided to prevent us from exporting the same record with one click? As another user in the thread said, what where you guys thinking?? You're not making the app more secure, you are actually making it worse as I now have to copy/paste these individual entries in a note, so that when done I can "select all" and then send with signal, and then (1) ALL those passwords will be in my clipboard which I could inadvertently paste somewhere else, and (2) I need to remember to delete the note, and (3) I have to delete it from the deleted items in iCloud as it will be stored there too. So as you see you're making matters much LESS secure by preventing me to share the items directly from Enpass. And as another user also said, when creating a backups those are in clear text anyways, so, again, please explain your "due to data security concerns" statement again?

When I go to vault settings and click "Sync Now," the same issue shows. Disconnecting and reconnecting does not resolve this.

Hello, I have Enpass on Linux desktop and my folder sync errors every day. I always have to disconnect the folder and resync again. This is a huge pain point currently. This used to work very stable for years (I never used any other sync mode.) ~ ❯ uname -a Linux intan 6.8.8-arch1-1 #1 SMP PREEMPT_DYNAMIC Sun, 28 Apr 2024 15:59:47 +0000 x86_64 GNU/Linux ~ ❯ pikaur -Qs enpass local/enpass-bin 6.10.1.1661-1 A multiplatform password manager I don't understand the reason. This folder is a local folder on my hard disc. How can this be "unreachable?" Please help!

I can second the issue with the broken autofill in firefox. This makes enpass unusable for me atm. Is there an update on a timeframe when this will be fixed?

Here's a workaround that will yield untagged items. Works on platforms that have a command line interface where the jq tool is available (e.g. MacOS, Windows, Linux). The following is what I did in a MacOS zsh terminal to find my untagged items. I happen to have jq version 1.6 installed. Install the jq command line tool if you don't already have it installed (https://jqlang.github.io/jq) File/Export in Enpass Select .json format, let's say you put it in a file called items.json In a command shell, cd to the directory where items.json appears Run the following command (note that if you're using a different shell, the syntax for the stuff outside the jq command might vary a bit: cat items.json | jq '.items[] | { title, folders } | if .folders != null then del(.) else . end | .title ' | grep -v '^null$' This will yield a list of item titles -- but not just any old item titles, it'll be only those that have no tags. :-) And don't forget to delete items.json after you're done! There's lots of sensitive information in there that is exposed while the file exists.

Thank you for sharing the details and your efforts in providing information. I've reported this issue to the Enpass technical team. They are currently investigating it, and I will reach out to you with updates as soon as I receive them. #SI-3837

We appreciate your feedback. However, due to data security concerns, we cannot recommend removing the password-protected encryption requirement for shared items. While we acknowledge that this change may inconvenience some users, it is essential for maintaining the security and integrity of your shared information. We're constantly evaluating our features and considering user feedback, so your input is valuable to us.

Is it safe to install & use the Snap store version? There are two offered (stable & edge) versions.

Hi! Enpass on Windows 11 running Enpass Version 6.10.2 (1665) Browser Extension on Firefox - Version 6.9.4.2 URL is: https://robertsspaceindustries.com/ Once on the landing page you can just click on the Account menu option at the top-right. With the extension enabled, 90% of the time a side panel will not appear. With the extension disabled, it will work 100% of the time, showing the login boxes.

Does the lack of silence indicate that your developers are unable to resolve the issue but are unwilling to admit it?

I too needed to share some of my accounts (they're generic - admin, webmaster, etc) with my coworkers, and just found out that I cannot because the MacOS and the iOS apps are now forcing me to encrypt them with a password. They're not using enpass, so now I can't share the information.... I thought I remember being able to do it in the past and just saw this thread that confirmed that I hadn't imagined it. What kind of stupid decision is this to remove the ability to share items unless they are password-protected? I'm sharing them with people I know via Signal, so they're secured already. And now I'm going to have top copy/paste each entry in wordpad (I have over a dozen, it's going to be a pain...) and then send them like that - (UNENCRYTPED). Why are you making me go thru all these steps when the app should simply allow me to export them unencrypted to begin with?? With the PSK you're requiring the other users to have Enpass as well, which is NOT the case. Please re-enabled that setting again so we can remove the PSK. Whoever came up with this requirement needs to realize this idea makes no sense at all and should go back to things as they were before.

Currently, the extension doesn't fully support filling in all six individual 2FA fields. However, it can automatically populate most of the six-digit TOTP fields because the website handles that internally. The extension intelligently guesses the single TOTP field based on common keywords and tries to autofill it. Then, the website distributes the filled TOTP contents across the six fields. This behavior is also seen in PayPal.

It has been a recurring problem for some time. After login, the application will be launched several times. On the forum I have seen others have encountered this error. Is there a solution?

If you're currently experiencing the reported issue, please ensure the following steps on your PC: Verify that your browser does not have a verification code signature by re-downloading it from its legitimate source and trying again. Ensure that you are not using any VPN connection. Confirm that the Enpass application is running on your PC. Make sure the latest version of Enpass is installed on your PC. Check if the browser has been blocked from making connections to the Enpass app. To unblock the browser, open Enpass, go to Settings > Browser > Browser Authentication, and click "Review Browser." Find your browser and click "Remove."

Our technical team is actively working on a solution. Fixing this bug may take some time, and the resolution will be included in the upcoming updates of the application.

Certainly, we're here to assist you. To help us investigate the issue, please provide the following details: Enpass and OS version of your machine. Enpass extension version. If there is a specific URL where this issue is occurring. Share a screen recording of the issue, as it will help us better understand the problem. Feel free to let me know if you have any specific details or questions you'd like to discuss.

Thank you for reaching out and providing your valuable feedback. I've forwarded your request to our development team for their consideration. We greatly appreciate your input as it helps us improve our product and better meet the needs of our users. #SI-3834