Jump to content


Popular Content

Showing content with the highest reputation since 07/20/2018 in all areas

  1. 2 points
    Hello, one of my most-wished features are now in Enpass 6 Beta, be able to upload own icons to the vault, which is quite amazing, but it has still some bugs and missing features, which may are already known and on the list, but I thought I'd post this nevertheless. Unfortunately, the icon itself doesn't resize itself to the correct dimension, so maybe adding this would be very helpful. Further, maybe it would also help if we could arrange the image to our likeness. and, after trying out different icons, I have now multiple icons in the icon storage, which I don't use, so please let us delete them :-) I'd be nice also to have the ability to upload an image with an URL, which would save some times. edit: I just added the fourth icon to a entry, and now it every time crashes when clicking on the icon when I'm editing an entry.
  2. 2 points
    I would like to submit a request for consideration under "Tools". It would be great if there was an option to search for duplicate entries: I do not mean just the username and password, but the actual URL. Not sure how I keep doing it, but I manage to create duplicate entries here and there and this would be a great DB cleanup option for users like me. Otherwise, I seriously love this app! I still use it concurrently with LastPass, but have been more rapidly switching to Enpass for daily use. Thanks for the hard work!
  3. 1 point
    I understand that you do not wish to open-source your product, but I am reluctant to use it because of the fact it is closed-source, the company is based in India (yes, this matters) and there is no information about the development team. Have you considered having an independent 3rd-party audit your source-code on a regular basis as a way to gain credibility without open-sourcing your product? Thanks, Gili
  4. 1 point
    Hello guys, What a great new manager! I love it. You asked for some feedback and I have some: Alt Gr + 2 is for some reason now a keyboard shortcut to open the manager. This is also the shortcut for @ on my keyboard, and now I can't type @ any more. (Scandinavian/Norwegian layout) It would be nice if there was a mouse-over tooltip for these boxes: So I can figure out what they are for without clicking them. Thats it for today!
  5. 1 point
    athnndnly, I had the same issue when trying to authenticate with Firefox. I was able to get it to work by switching my default browser back to Chrome, was able to complete the auth, then switched it back.
  6. 1 point
    My first thought is that, although I appreciate the added functionality, the app does not feel like a native macOS application anymore. The buttons, the icons, the menus... they all seem to resemble the Windows user interface instead. An additional element in which this is shown, is the sidebar: the previous app had a slightly translucent sidebar, while it's completely opaque in Enpass 6. I'd imagine these changes are the consequences of trying to ease the process of developing for different platforms. For me, however, this might be a reason to switch to another password manager: the UI simply doesn't do it for me.
  7. 1 point
    Hi Anshu, Thank you very much for your quick answer. That's a great news, showing that Enpass keep respect for old devices. I really appreciate that. I will update this post when fingerprint is added in beta updates and working my device. And I'll definitely buy Enpass 6 when final version will become available (I need multiple vaults support for personal and professional use). Keep up your good work! Cheers.
  8. 1 point
    Already added to the upcoming Enpass 6 (in Beta now)
  9. 1 point
    Hey guys, We have tracked the issue and a fix will be available in the next update. Thanks for your co-operation and keep reporting.
  10. 1 point
    Hi @Arnas Thanks for sharing the details. I've noted it down and forwarded to the testing team to look into it. Thanks!
  11. 1 point
    When showing the list of identical passwords, please also add the post which is identitcal. (So you know and you might want to change both) - Also, please add this as a warning allready when creating the password.
  12. 1 point
    These days, it's hard to not leave behind a digital footprint. People can often learn a lot about you just by googling your username. I think that Enpass could really help solve this problem by offering a random username generator. The usernames could be nonsensical, or they could be created from a predefined dictionary. It would also be nice to have a general random generator so that you could generate random values for any field, but I think this would be more difficult to implement. One possible use case would be randomly selecting an email to use from a list of your email addresses, which would also make it harder for people to track your online activities.
  13. 1 point
    I think one thing that would help at the VERY least, is to provide some insightful details about the types of cryptography going on here, and how it's handling that. Something LastPass also does is they provide reasonable levels of details about what they do, where it does it, and what algorithms are being used.\ For one example I note, just looking at the Enpass binary I run ldd on it in Linux, and see that it's linked against libgcrypt, libssl-1.0.0, etc.. But also note that it's linked with libsodium, however that's not found, specifically. Which is a bit odd and concerning to me. A well known library that is linked but not used? I personally like the concept of Enpass. I'd like to know a little more what's under the hood of its design from a security standpoint. A lot of people can say, they use military grade AES-256 encryption, but HOW they implement it could completely break it in a snap. Some people here pointed out the country of origin. To me that is mostly immaterial. What is more important is security itself, and the fact is: Security Is Hard, as Steve Gibson himself always says on his podcast show, SecurityNow. Take a look at how LastPass describes what they do for security from a technical point of view: https://lastpass.com/whylastpass_technology.php
  14. 1 point
    I have also seen that I have to type in the authorisation-code to pair the browser extension with the desktop-application a number of times now. I assume this is suposed to be a one-time-thing, and I think I have done it four times now. Some more ideas came to my mind: It would be nice if each login with a URL got the favicon from that site as its icon, instead of me having to set every icon maunally (which I don't)
  15. 1 point
    Went back to see if this had been listed before and couldn't find it, I have Favourites in Enpass and it would be handy to have them appear in both the Menu Bar icon (iMac) and Safari extension. I marked these logins Favourites as they are my go to logins used regularly.
  16. 1 point
    Hi @Xen, Thanks for showing interest in improving Enpass. Currently, we are working on refactoring the core engine and adding new features in Enpass along with a completely new UI and will love to get it done for the next update, we will contact you for that. Cheers!
  17. 1 point
    All of the questions asked in this thread, and much of the confusion, could be avoided if people would just read! Anyone saying "Help! I'm using the current/latest version of Enpass on Windows and the Firefox 57 plugin doesn't work" needs to stop and inform themselves first! There are multiple editions of Enpass on Windows, all of which have different version numbers. All of them are the current/latest version of Enpass, for their edition. Only one edition is compatible with Firefox 57. Three of them work with Firefox 56 and earlier. Only one of them works with Edge. Frankly, I think the Enpass team is having some difficulty communicating on this topic, but here is the break-down: * The 'Traditional Win32' edition is the only edition that works with Firefox >= 57. ** The 'Windows UWP' edition is the only edition that supports Windows Hello and Cortana. IMHO the table above is what should be on the Enpass download page, under a single heading for Windows. Considering the ludicrous mess they have there now, the confusion isn't surprising. Anyway, according to this blog post: the Windows 10 - Desktop (a.k.a Bridged) edition is what the Enpass team will be focusing on going forward. It will eventually become compatible with Firefox 57 and include all the features that are currently unique to the 'Windows UWP' edition. The 'Traditional Win32' edition won't get that much attention, but it will stick around for people with older versions of Windows. I've not seen anybody mention anything about the portable version, which at this point looks like it has been abandoned. Here are the download links for the various versions of Enpass for Windows: Traditional Win32 (5.6.0) Portable (5.5.6) Windows 10 - Desktop [a.k.a bridged version] (latest version) Windows UWP (latest version)
  18. 1 point
    I have emailed support but haven’t heard back yet. Is there any way to get a confirmation your current model of local storage and syncing to third party cloud storage will be the long term direction of your product. I am moving to your product and want to recommend it to my clients currently using a competitor that is now changing directions to sync all data with their own proprietary cloud. I just can’t get behind that model. Your currently model is awesome and just looking for confirmation it will remain this way. Thanks very much!
  19. 1 point
    Hi @Thomas Was Alone, We would plan for the Security Audit after the Next major release i.e. Enpass 6 as that would have a fat list of features worthy enough for security audit. Please bear with us.
  20. 1 point
    Hello, everybody! I truly understand your concern for a software holding critcal information and not being open sourced or audited by any credible third party agency. Well guys, thanks for all your comments and we've decided to get third party audit of Enpass. But all we need is just some more time as after the upcoming release of Attachments (beta is already there), we'll work on some key features like multiple-vaults with a need of refactoring the core engine, and I think that would be that best time to go for audit, all at once. Till then, please bear with us and all I ask for is your co-operation. Cheers!
  21. 1 point
    +1 It's funny to hear that ensuring that your cryptographic product is in fact secure is not worth the effort. Other apps come to mind: Signal, Telegram, Veracrypt. All cross-platform, all frequently updated, all audited. Oh, and they're all free.
  22. 1 point
    +1 If you choose not to share the source, its sorta up to you to pay some third party to review the code with NDA. And as Gili said, no one expects reoccuring audits. Its mostly, or at least about customers needing to know that you've implemented cryptography in a acceptable way and of course that there are no additional ways in to a running process of Enpass.
  23. 1 point
    Hemant, Thank you for your response. I don't think anyone is expecting frequent audits. Once a year or every 3 years should be enough. As to the cost... that's the cost of doing business. The primary reason I skipped over this product was because it was both close-sourced and unaudited. Otherwise, I would have purchased a copy. Gili
  24. 1 point
    At least an answer please? AFAIK "Security of our data is your utmost priority." We have questions and thoughts, yet there is not even an answer from the maintainers. This itself means a serious security concern.
  25. 1 point
    I totally agree! That would boost up your reputation!