Jump to content

Leaderboard


Popular Content

Showing content with the highest reputation since 11/17/2018 in all areas

  1. 3 points
    Steam implements TOTP with a different alphabet. The basic algorithm seems to be the same as usual TOTP, but the representation of the token is different. An example implementation can be found here: https://gist.github.com/mooop12/1af7f0ffc8f28ea76f27abcba1e6da01 It would be cool if Enpass added support for these token types (maybe even as part of Enpass 6? :-) ) To not clutter the UI, maybe you could take the road of Bitwarden which uses a URL scheme to support different token types (no schema = default TOTP token, special token however could be steam://xyz123abc456).
  2. 2 points
    Raspi + Nextcloud (or a simple lightweight WebDAV server) could be a good choice. Or any NAS. Direct Device 2 Device would certainly be a cool thing (especially if they can discover each other over your local network), but I think having a little server in the middle should be doable. Or you simply host the WebDAV server on your PC ... many possibilities :-)
  3. 2 points
    The Android version is loaded. The fingerprint unlock is still much slower than V5. The big problem is I cannot load the primary vault. There doesn't seem to be any RESTORE function and I cannot get the sync to OneDrive to complete the connection. This may be a transition from V5 problem but it is still a problem. jeff
  4. 2 points
    I feel this is extremely important, especially based on your industry. You need to show us, your users that trust you, that this trust is not misplaced. Now, I think it's been long enough that you have not had this done, and it needs to be done. I feel that most of this stuff you mentioned above has been implemented. You have also previously stated that security is #1. So then, can we please get a serious answer about this? Are you doing an audit? Who is doing it? When is it starting? When do you expect the results?
  5. 1 point
    Dear Beta Subscribers!We’re happy to announce the finest beta of Windows Store app. It is available through the PackageFlight if you have subscribed our Beta program for Windows 10 in past. Unlike the previous beta versions of Enpass 6 which came as a separate app, this beta will come over the existing Enpass 5 application in your PC. Subscribe Beta Program While we add some finishing touches, get your hands on this beta and share your valuable feedback. IMPORTANT NOTES FROM DEVELOPER Must save a BACKUP: Before installing this beta, it is highly recommended to take a backup of your data manually from any Enpass version you are using. You can take a backup via Enpass > File > Backup. Installation NOTES: Unlike the previous beta versions of Enpass 6 so far, this one will come over and replace your current Enpass 5 app, and your data will be upgraded to support the new architecture of v6. And if you're having the previous beta version of Enpass 6, it will also get automatically uninstalled, so please take the backup of that one as well. Once the database is upgraded to v6, it can't be downgraded or restored into previous Enpass versions. Sync incompatibility: Sync in Enpass v6 works entirely in new, efficient way and syncs to the different location (generally in destined App folders on cloud service providers) than the previous versions released so far. It will neither synchronize with and nor restore data of any previous versions (Enpass 5 and previous Enpass 6 beta). So if you want to start testing of this beta as a clean install on some other device on which you are not having Enpass 5 (i.e., not over your existing Enpass 5 app), the only way is to restore data from the backup file. Browser extension incompatibility: The current Enpass 5 browser extensions are not compatible with the v6. You can download and install the latest extensions from here. Edge Browser Extension: Extension for Edge Browser compatible with this update is available to you from Windows Store as a PackageFlight subscriber. Settings restoration: All your Enpass 5 settings will get reset, and you have to Re-configure them individually. What's New Multiple vaults: This is one of the most demanded features in Enpass that lets you have separate vaults for better segregation of your data. You can create multiple vaults for personal and work data and share with your family or team members by syncing through a common cloud account. However, each of your vaults requires a different cloud account to sync with. To create a new vault, go to app Settings > Vaults > Tap the ‘+‘ icon, and follow the instructions to create your new vault. Custom categories and templates: The desktop version of Enpass 6 now allows you to create your own custom Categories and Templates. This way you can manage your data the way you like. Unlock with Windows Hello: You can now unlock Enpass with the Windows Hello. Master password will be required at every fresh start of the app. Dark theme: Enpass comes with the dark theme support for Windows. You need to restart the app after switching the theme from Enpass Settings for the changes to take effect. Sync through iCloud: Now the support for iCloud sync is not limited to Apple devices only, you can use it on other platforms as well. Favicons: Enpass 6 can automatically download and set the icon associated with the particular website or URL saved in an item. You can enable it from the Enpass Settings > Customize > Enable Use Favicon. Custom icons: We've also introduced a much-requested feature; Custom icons, which allows you to set any image as an icon for any item in Enpass. Secure sharing: This version brings secured sharing where you can share an item encrypted with a Pre-Shared Key (PSK). You can create PSK from the Advanced Settings of Enpass after which an additional option to Encrypt with PSK will appear while sharing the item. You need to share the PSK with the intended recipient which he needs to enter while importing the item. Keyfile support: You can now additionally use a Keyfile along with the master password to log into Enpass. Only the desktop versions allow you to generate keyfile while setting up the master password. Trash: Trash is here. From now onwards, every item you delete will go in the Trash first from where you can recover or permanently delete it. Archive: You can archive the items which are no longer in use, but you don't want to delete them as well. The archived item won't appear in any search results. Sorting options: Added options to sort the list of items by Created Time, Modified Time, Recently Used and Frequently Used. Multi-line fields: Added a new field-type as multi-line field which allows you to save information in more than one line. You can make any field a multi-line field by changing its field type from the item edit page. Identity: We've introduced a new default category Identity to let you fill those long, tedious identity forms with a single click. Added localization support for Afrikaans, Malay, Croatian, Hungarian, Indonesian, Romanian, Slovak and Swedish. Improvements Cloud synchronization: The new Enpass 6 now syncs the Enpass data into the designated App folder on the cloud, unlike it used to do in the root folder for OneDrive, and Google Drive. Along with this, the app now requires minimal permissions and will give relief to our folks who raised concerns regarding the list of permissions the Enpass was asking while configuring the sync, especially in case of OneDrive. Also, as Enpass 6 is based on a new architecture, it will not sync and restore data from previous Enpass 5 and Enpass 6 beta versions. Browser extensions: The new browser extension is now called Enpass Assistant with improved security, auto-filling, and auto-capturing. While setting initial connection, you would need to pair the browser first. It also allows you to autofill in pages with more than two fields. Improved Password generator and strength estimation: We have improved the password generator with the new user interface, option for excluding the symbols and the better strength estimation using zxcvbn. So there might be chances that the password shown as strong in Enpass v5 will be displayed as Weak in Enpass 6. Tags: The erstwhile Folder feature is now known as Tags. All your existing Folders and sub-folders will be replaced by the Tags and sub-tags respectively. Separate section for items with TOTP or Attachments: Many of you folks requested that items with TOTP or attachments should be grouped and displayed together, and here you'll see the separate sections for both TOTP and Attachments in the Sidebar. Eight digits TOTP support: Previously the app was restricted to generate only six digits TOTPs making it difficult for some folks who were using eight-digit TOTPs. Now this limitation has been removed, and you can freely add TOTP to quickly login into accounts. Checking Pwned passwords for the complete database: A significant improvement in checking the pwned passwords! Now instead of checking a single password for pwnage, you can check all passwords saved in your database. Better with importing data from other password managers. A lot of other minor improvements. Fixes over Previous Enpass 6 Beta There was an issue raised by some of you guys where If a user was adding an attachment containing any language specific characters ( å, ä, ö, etc.), then the app was crashing while saving the item. Well now, Fixed. A bug where WebDAV sync wasn't configuring over the Seafile server, now fixed. Fixed an issue where pressing the ESC key wasn't clearing the search field. Fixed an issue where copying or moving an item from one vault to another, lost all its assigned tags. We are continually working to boost the quality of Enpass before the official release and devoting a lot of time in improvements and bug fixes. And we are eagerly waiting for your feedback on our forums. With Love to our Windows users!!❤️❤️
  6. 1 point
    First off great work with Enpass6 Beta! Would be great if there was some sort of two-factor code generator built into enpass. Right now I have to log into enpass, copy my passwords, then switch over to my two-factor system for the code. It would be great to have it built in. Also, there should be a "save password" option from the password generator.
  7. 1 point
    Hey @Philip, Sorry for the trouble you are going through. Chrome web store does not allow two different channels (beta and production) for same extension, so we have to publish beta as a separate extension. Please install the beta Enpass browser extension for Chrome browser from this link and let me know if the problem persists. Thanks!
  8. 1 point
    I want to sync multiple vaults the same Gmail account. Please give us that option.
  9. 1 point
    I just came here to start a thread about this, having just set up syncing tonight. Surely there has to be a way... Please make it happen.
  10. 1 point
    I am REALLY pissed off at this. Honestly, how dare you force me into a beta situation. I RELY on my password vault across my PCs, tablets, and phone 10s of times per day and I need to working 100% reliably. Now, you decide to forgo the previous side-by-side beta experience (a good way to do it) and force everyone into your beta?? I appreciate you want to put out the best version of the product on release and thus it probably made sense in your minds to pull in more users to beta test, but FORCING us into your beta test program with no way to decline or opt-out is simply unforgivable. I had always been a strong advocate of Enpass over other solutions like Lastpass but this behaviour by you will make me never in good faith recommend your product again.
  11. 1 point
    I don't think auto updating clients to a beta version automatically is really a good choice for Enpass. What if we signed up for the Beta program to just run the beta on a VM rather than on our primary Windows machine. If I install 5 again will it auto update once I check for updates in the store. We need some details on this from Sinew Software Systems.
  12. 1 point
    Here is everything one more time: 1. No installation routine 2. No deinstallation routine of Enpass 5 3. No upgrade routine from Enpass 5 4. Sync setup doesn't work. Protocol assocation error "enpassauth:" 5. When Enpass is closed and try to open Browser Extension, comes assocation error with protocol "enpassstart:" 6. Adding new login doesn't work. I'm using Windows 10 Enterprise 1803 (17134.407)
  13. 1 point
    Me too. For some reason everything Auto Updated and now I'm stuck on version 6 on my desktop but can't connect the beta on iOS to my OneDrive Sync
  14. 1 point
    Great work picking out the one point of my post that was even marked as being my opinion and completely ignoring all the objective points I listed otherwise. Nice style! I'm talking about User Interface, while you are talking about User Experience. The UI has more features than the Bitwarden UI. It's as simple as that. See examples above.
  15. 1 point
    Hi, I tried to export my password to CVS and it produced the most messy file it can, notes mixed in with usernames, usernames mixed in with urls ... etc. It's practically unusable unless I sit and fix everything manually!
  16. 1 point
    I didn't see any posts here about sharing custom templates. I took a look at /r/enpass as well, but that subreddit seems to be dead. What I wanted to do was start a thread where we can share custom templates we've created, just in case others may find it useful. I first started looking for a template to keep track of SSL Certificate info, & found nothing. To start, this is what I have for SSL Certificates, but plan on improving it.
  17. 1 point
    Good Morning everyone Almost four months without any update on this thread. So whats the status about the Security Audit? Cheers SwissIndoor
  18. 1 point
    Hello Enpassians! The first Enpass 6 beta for Linux has just arrived with the following awesome features: Multiple-Vaults: Now you can share data with you family, friends or team members by using multiple vaults. Each vault must be synced with separate cloud account (could be of same service provider) for syncing. Keyfile Support: You can now additionally use a Keyfile with the master password of your desired length i.e. with the use of Keyfile there is no restriction on minimum length of 10 characters on master password. Cloud Sync: An improved cloud synchronization mechanism with Google Drive, OneDrive, Dropbox, WebDAV and yes, the iCloud as well. Secure Sharing: Enpass now allows you to explicitly encrypt a shared item using your own Pre-Shared Key (PSK). You can define the PSKs in Enpass Advanced settings. New Browser Extensions: Don't forget to download and checkout our new browser extensions for Chrome and Firefox browser with an improved autofilling and form capturing to allow you to autofill in pages with more than two form fields and lot more. Custom Categories and Custom Templates: Manage your data the way you love by defining custom categories and templates. Custom Icons: Add your own icons to the items. Trash: Added support to Trash the items. Archive: You can now archive the items which are no longer in use, but you don't want to delete them forever. Also the archived items don't appear in search results. Get it Now Important Notes Supported Platforms: Beta versions are available only for systems with 64 bit architecture, and through the Debian and RPM repositories. Tested on CentOS 7, Fedora 24 and Ubuntu 14.04 or later (64-bit only). Separate app: Beta version of Enpass 6 will be installed as a separate app and will not replace the existing data of Enpass 5 on your device. So you can freely use the beta without worrying of any data mixup. Restoring database from Enpass 5: The only way to restore your existing data from Enpass 5 to 6 is through restoring your Backup file from Welcome Screen. In case you have already used Beta version of Enpass 6 on any other device and have synced it to cloud before, you can restore from there. Synchronization: Enpass 6 is based on a new architecture and will not sync with the existing data of Enpass 5 on cloud. So this way you can use your existing cloud accounts to test the sync in Enpass 6 without any mixup of existing data. Also, the Enpass 6 places the data on cloud into the designated App folder unlike it used to do in the root folder for Google Drive, and OneDrive. These changes will restrict you from restoring of existing data from cloud and you have to restore your data using a backup file. All beta versions are precursors of final products. They are intended for testing purposes only and should not be used any place where your data is important. Please backup your database before testing a beta release. The beta app may contain some features that are still in development and not fully functional. Waiting for your feedback. With Love to our Linux users!!❤️❤️
  19. 1 point
    I would love Enpass to just show me the Windows Hello screen whenever it wants to be unlocked. So when I open the app, the assistant, use the extension button in the browser or hit the autofill key shortcut, I should immediately be asked for my Windows Hello authentication, without pressing any buttons. I think for most people that have Windows Hello login enabled, this would be the preferred way to go, but if you think people will be annoyed by it, making it a separate option is fine too. And it would indeed be awesome if Windows Hello would stay enabled after a reboot!
  20. 1 point
    Same Problem with the iCloud account. Looks like it's a General problem.
  21. 1 point
    I'm just starting out with Enpass and I love it! But i just would like to note that I'm also very concerned with this issue! I can only fully trust my personal data to Enpass and recommend it to others if it's Open Source and / or Audited by a qualified and trusted external organisation.
  22. 1 point
    @rgsiiiya I've started a new topic in the Feature Requests forum: https://discussion.enpass.io/index.php?/topic/2413-add-checkbox-field/ You can chime in if you'd like!
  23. 1 point
    +1 Or unchecking a checkbox, for instance, to disable an option like 'keep me logged on', as several websites automatically check such a checkbox, which I don't like, because for easily logging on I am using a password manager, so such a checkbox makes it less secure, even if it's my own, non-shared computer. Guess I'll make this a feature request...
  24. 1 point
    +1 It's funny to hear that ensuring that your cryptographic product is in fact secure is not worth the effort. Other apps come to mind: Signal, Telegram, Veracrypt. All cross-platform, all frequently updated, all audited. Oh, and they're all free.
  25. 1 point
    Hemant, Thank you for your response. I don't think anyone is expecting frequent audits. Once a year or every 3 years should be enough. As to the cost... that's the cost of doing business. The primary reason I skipped over this product was because it was both close-sourced and unaudited. Otherwise, I would have purchased a copy. Gili
×