Jump to content

Leaderboard


Popular Content

Showing content with the highest reputation since 04/05/2016 in Posts

  1. 26 points
    It would be a perfect application if we could create our own templates and import custom logos
  2. 18 points
    I understand that you do not wish to open-source your product, but I am reluctant to use it because of the fact it is closed-source, the company is based in India (yes, this matters) and there is no information about the development team. Have you considered having an independent 3rd-party audit your source-code on a regular basis as a way to gain credibility without open-sourcing your product? Thanks, Gili
  3. 18 points
    One thing I loved about 1Password in terms of it's UI was the fact that it grabbed the website favicon for any entries with a URL in them. That would eliminate (or replace) the need for specific icons and having to keep them updated or maintained. I think it'd be a nice addition to the UI for Enpass.
  4. 17 points
    Option to store (and protect of course) Pictures - Photos or Images on Enpass Store pictures like "Secure Photo" (mimiking Secure Note) or something like that Store pictures as "New Items" ... when you add a new item, another in the list can be "Picture" But even more, every type of added element should allow to add a picture, that's useful for example for when you add a credit card, a club card, a check, a bill, a handwritten note... etc. maybe allowing to add it as a "custom field" thought "add new field" action.... there is a "Field Type" Thats my request
  5. 14 points
    I would love to use Enpass for my everyday life and at work to share passwords with my teammates securely. But I don't want them to see my personal passwords obviously, so we need to create a second vault. Problem is that there is no way to open multiple vaults at a time.
  6. 10 points
    Hello, everybody! I truly understand your concern for a software holding critcal information and not being open sourced or audited by any credible third party agency. Well guys, thanks for all your comments and we've decided to get third party audit of Enpass. But all we need is just some more time as after the upcoming release of Attachments (beta is already there), we'll work on some key features like multiple-vaults with a need of refactoring the core engine, and I think that would be that best time to go for audit, all at once. Till then, please bear with us and all I ask for is your co-operation. Cheers!
  7. 9 points
    Allow me to stand on my soap box... I started using Enpass maybe 2 years ago and I have to say, I'm really impressed with the product. I'm a long time KeePass user, was very happy with it and wasn't actively seeking another solution when I came across Enpass maybe 2 years ago. After giving Enpass a solid go, I thought it was pretty neat, moved everything from KeePass to Enpsas and I've been really impressed with the improvements on all platforms since I started using it. The real draw to Enpass for me and others I've shared the product with, is the fact that one doesn't have to sync their data onto Enpass servers or other cloud storage providers. For most people, when they hear that, see the setup I've got going on as well as a demo of the product, they're usually hooked. My employer provides a DashLane Premium account to all employees so I've been kicking the tires on it a bit just because I'm expected to be a subject matter expert on it of sorts. I think DashLane is a slightly different animal compared to Enpass but it does offer some interesting features I'd like to see in Enpass one day. As I thought about checking the forums for these features, it dawned on me: Most of the popular services require with a monthly or annual subscription, while Enpass is free or can be had for a one-time payment starting as little as $4.99. So while I'm trying to do my part to promote Enpass to those I know who are not using a password manager, there's no denying that development requires time & effort (& money ) so I want to know: What can the average Enpass user do to further promote Enpass and/or support Sinew Software?
  8. 9 points
    Hemant, Thank you for your response. I don't think anyone is expecting frequent audits. Once a year or every 3 years should be enough. As to the cost... that's the cost of doing business. The primary reason I skipped over this product was because it was both close-sourced and unaudited. Otherwise, I would have purchased a copy. Gili
  9. 8 points
    Steam implements TOTP with a different alphabet. The basic algorithm seems to be the same as usual TOTP, but the representation of the token is different. An example implementation can be found here: https://gist.github.com/mooop12/1af7f0ffc8f28ea76f27abcba1e6da01 It would be cool if Enpass added support for these token types (maybe even as part of Enpass 6? :-) ) To not clutter the UI, maybe you could take the road of Bitwarden which uses a URL scheme to support different token types (no schema = default TOTP token, special token however could be steam://xyz123abc456).
  10. 8 points
    There are too many universally experienced bugs for a small support / development team to chase in an organized fashion that will not result in a much degraded product that will be much harder to maintain and upgrade going forward. Many of the bugs create security issues (e.g. the failure of Enpass browser extensions to block access to web login sites until the Enpass master password is entered, then subsequent failure to load the info from the vault for the page with the login controls (UID, password). A number of bugs impact stored data integrity and reliability. E.g., browser extensions seem to "forget" Enpass has been installed and working fine in with a particular "Master Password" in the past, and reports it has not completed set-up, needs a master password to be created, or previous data restored. However, despite selecting auto-backup creation in version 6, no backups get created, and attempts to restore from the local computer lead to a Google login page. (?!?) Further, the database form, format and location used to store the "vault" has changed from v 5 so that the process of "rolling back" will be tedious with many manual actions required by the user while understanding it is highly likely that v5 will not be able to use a v6 vault for its data. Version 6 install / uninstall make a mess of the Windows registry leaving multiple entries with duplicate information that is incorrect. For example, after installing v 6.0.2 the registry contains no entries referencing this version but does have entries referencing the previously installed 6.0.1 (239) referenced as 6.1.239.0. There are multiple keys in HKCR that contain the exact same info. HKCR\.enpass_card should reference one of the subsequent classes in HKCR from its "OpenWithProgids" key, but there are at least EIGHT OTHER Progids in HKCR all for same "@{SinewSoftwareSystems.EnpassPasswordManager_6.1.239.0_x86__fwdy0m65qb6h2?ms-resource:...". Thus the uninstaller needs to be fixed so that it cleans up all the entries it leaves behind when the software is uninstalled since this splattering of multiple keys with duplicate data may be at the source of some worsening issues each time a new v6 install / uninstall / re-install is attempted. Although I haven't attempted it, I believe this shotgun blast of Enpass version 6 registry entries left behind after its uninstall will make a rollback to version 5 problematic especially for Windows users not versed in registry editing and the subtleties of changes in Enpass database form, format and location. For these reasons the Enpass development team needs to withdraw all version 6 releases and provide A FULLY TESTED UTILITY TO COMPLETELY REMOVE TRACES OF VERSION 6 FROM THE REGISTRY / SYSTEM FILE STORES, AND CONVERT THE V 6 DATABASE BACK TO A VERSION 5 COMPATIBLE "WALLET" SO USER CAN THEN SUCCESSFULLY RE-INSTALL AND OPERATE WITH VERSION 5. This will then give the developers and Enpas QC engineers time to re-engineer v6 from top to bottom with REAL unit testing AND REAL THOROUGH in-house use case testing BEFORE releasing to beta testing or the "stable release" channel.
  11. 8 points
    I would like to submit a request for consideration under "Tools". It would be great if there was an option to search for duplicate entries: I do not mean just the username and password, but the actual URL. Not sure how I keep doing it, but I manage to create duplicate entries here and there and this would be a great DB cleanup option for users like me. Otherwise, I seriously love this app! I still use it concurrently with LastPass, but have been more rapidly switching to Enpass for daily use. Thanks for the hard work!
  12. 8 points
    Good Morning, I have been using EnPass for a while as my primary password manager and love it. One feature that I would really love to see is a way for EnPass to authenticate me to SSH servers
  13. 7 points
    I'm going to repeat myself but please support yubikey feature. IT's pretty simple, yubikco is giving all the API we need to do this: We know that it should be for web app but if you say was the ONLY usecase then -> we wouldn't use it to auth in windows 7 locally -> we wouldn't use it to auth in keepass locally -> we wouldn't use it to auth to QubesOS and decrypt the device LOCALLY Should I continue? Yubikey CAN and SHOULD be used to decrypt encrypted assets in ALLL password manager. We should never pretend to know better since there are always better version of ourselves and in this case it's also true. If theoreticians of security and cryptology use it then we should too. simple as that.
  14. 7 points
    Hi! I was using Enpass UWP for Windows 10 with full-time Windows Hello enabled, because my computer fulfills all necessary requirements (TPM 2.0, UEFI Secure Boot). So Enpass UWP successfully detected that the machine is secure enough to store the keys in hardware/TPM and use Windows Hello directly on the first launch even after a computer restart or when Enpass UWP was completely closed. Now with Enpass 6, it is only using the fallback solution of asking for the master password the first time after restart, and using Windows Hello only for subsequent unlocks. I think Enpass 6 is great and a big improvement in many things, but in this particular aspect it feels like kind of a stepback. So my question is: Will full-time Windows Hello be supported in Enpass 6 again like it was in Enpass UWP for computers which fulfill the necessary requirements for hardware/TPM-based security?
  15. 7 points
    Hi Enpass Team, It would be nice if you could support autofill/submit for HTTP Auth. ChromeiPass does it, so it must be possible for you ;). Thx!
  16. 7 points
    I don't agree with you. To give you an example: When you buy a software, you normally get a serial-number (which you can already save it in Enpass). But some software are providing a license-file instead of a serial number. This files are very small and I don't want to store dem separate in a encrypted folder. As I have written previously, for bigger data we can use encrypted folder, but license-files or key-files have in opinion the same priority as passwords. Another point is the sync with the cloud. I don't know, how the development-team have implemented the sync function, but nowadays it's possible to sync only the changes between two files. Next today we have highspeed Internet and so the sync takes some seconds. The last point (I don't want to attack you) if this feature is implemented, nobody forces you to use it. So if you don't attach documents to Enpass, the DB of Enpass will stay at the same size as it is now. It's fine that you only store passwords in Enpass, but in my case some files(cert,...) are used to authenticate me on some services. These files are used like passwords and for this reason I also want to store it in the same location as all my other passwords.
  17. 7 points
    Hey guys,Thanks for your suggestions. they are already in our roadmap and will be available with our future versions.
  18. 6 points
    It would be nice to be able to create, change, edit the Types / Category Templates in Enpass. Currently I use mSecure, but am looking to make a switch. I really like that mSecure is more like a custom secure database builder than just a secure password saver, and I think Enpass has the potential to be better than mSecure, but being able to edit the Types / Category Templates is one thing Enpass desperately needs. I know you can add fields to each item when you create them, but I'd really like to set custom templates for items to use and get rid of the ones I don't want. Currently I have over 2000 items in mSecure, most of which use custom item templates. I would like to use Enpass to do the same. Unfortunately mSecure has become over-priced when using multiple platforms, and currently utilizes over 90% CPU usage in macOS 10.12 Sierra when sitting idle. I think it might also be lacking in support.
  19. 6 points
    It would by nice to have a System wide shortcut like 1Password Mini to quick access enpass in every situation. I would also by nice to full controll the enpass "Mini" by keyboard.
  20. 5 points
    Hi Enpassians! We know our Portable users have been waiting to get the v6 update quite a long time as they are facing compatibility issues with the data on v5 of Portable Apps and v6 of the Stable apps. I am sorry that took it more time than expected as we were busy in improving and stabilizing the v6, but it's finally here! The first beta of Enpass v6 for the Portable apps has been out, and you can get it from the download links given later in the post. The complete changelog for this beta is: What’s New Multiple Vaults: We are very excited to have the support of more than one vault in Enpass to collaborate with our family and team members, keeping our personal data separate in Primary vault. It was one of the most demanded features from you guys. You can share a vault with others by syncing through a common cloud account where each vault need a distinct cloud account to sync. Just go ahead, and give it a try! Secure Sharing: Every single item that you want to share with others can now be encrypted with a passphrase (call it Pre-Shared Key). You can create PSKs from the Advanced Settings of Enpass after which an additional option to Encrypt with PSK will appear while sharing the item. You need to share the PSK prior with the intended recipient to enable them to import in their Enpass. Please use a different medium to share the PSK than you’ll use to share the item. -“Keys are always kept hidden from the locks” ;-). Enpass Assistant: The minified Enpass is now called Enpass Assistant (Formerly Helper). It offers excellent autofilling experience with browser extensions, and you can invoke it from a Keyboard shortcut or System Menu bar. Always run Enpass Assistant in docked mode: From now onwards, you can stick the Enpass Assistant on the screen, and it won’t disappear when you click outside it. You can enable it from Enpass General settings under the Behavior section. Also, once the Enpass Assistant is opened, you can use the Keyboard shortcut Shift+Ctrl+ D to stick it on the screen. Keyfile Support: You want to have a super-duper strong master password, huh! Yeah, but memory has a limit to memorize it. No worries, you can use Enpass 6 to let you use Enpass-Keyfile in addition to your master password as a second factor required to unlock the Enpass on every platform. Custom Icons: Let’s you set any image as an icon for an item. Trash & Archive: You know what to do with Trash. Archive those unwanted items which should be skipped while Searching. Identities: Create identities with personal information for auto-filling long, tedious sign-up forms with a single click. Multi-Line Field: It’s a new field type where you can save data in multiple-lines. History of Every Field: Like password fields, you can now see the history of changes in every kind of fields in an item except Notes. Dark theme: Added support for dark mode on macOS Mojave and Linux. A separate section under the ‘Groups’ tab to have a quick look at all TOTPs & Attachments. Added localization support for Afrikaans, Malay, Croatian, Hungarian, Indonesian, Romanian, Slovak and Swedish. Improvements Improved Security: The real stuff!! Enpass 6 comes with far better protection for your data. Check out more about Security on our website. Browser Extensions: The improved browser extensions now offer better auto-filling, auto-capturing, and security. Enpass extension can now autofill in pages with more than two fields. Also, while setting up the first connection with a browser, you would need to pair that first. Tags: Folders in previous Enpass were more or liked Tags, and so we have renamed them to Tags. And yes, they are nested too. Checking Pwned Passwords for Complete Database: Say goodbye to the hassle of checking every single password for pwnage, now you can review the passwords in your entire database with a single click. Improved Password generator and more brutal strength estimator. Again, Security Matters the most! Password Expiry: From now onwards you can set an expiry date to any password field and check for them from the ‘Audit’ tab when they are going to expire. Eight digits TOTP support. Unlike the older version, Password generator has no limitation of five passwords in history. Known Issues: Remember Location: After every fresh start, the app will ask you to select the data location even if you have previously clicked 'Remember Location.' iCloud Synchronization: The Portable versions are missing the iCloud option for the synchronization. Translations: Some strings might be not be localized in the supported languages. For Linux users running 16.04: The app icon isn't displayed in the launcher. For macOS users: Missing the Categories list, and item's icon: After the initial launch of Enpass Portable, the app may not show the Categories List or item's icon. Workaround: Copy the extracted enpassportable and paste it in a new folder or location. Now open the app and it will show the list and icons as expected. Using Safari 12 or later versions: Unfortunately, the Enpass extension for Safari will not work with the Portable versions. The reason is that the Safari App Extension is bound with the app installation. But for Portable versions, there is no such app installation. Workaround: Use any other supported browsers. Download Links Before installing the Beta version, please read the Enpass Portable User Guide. For Linux (.tar.gz): Enpass Portable Beta v6.0.7 For Windows and macOS (.zip): Enpass Portable Beta v6.0.7 Get your hands on this beta version and share your valuable feedback. If there are other improvements you’d like to see, please leave a comment below. Cheers!
  21. 5 points
    Hello, I upgraded to 6.0 today and was really looking forward to the vault feature in the hope that one vault would be shared while the other would not. My setup consists of 3 windows devices and 2 android devices (each with their own PRO licence). I managed to generate the new vault but when I come to tell it to sync to the same google drive location I get an error telling me that this is not possible. In my opinion the name of the first vault was system generated while 2nd vault onward require a name. Can't this name be used to generate a unique file name? Thanks and Regards,
  22. 5 points
    Unfortunately the new enpass version brings multiple annoyances, reduced efficiency, and a complete disregard to GUI design rules. The interface is counter intuitive and counter productive. There is no consistency throughout the experience, and my actual work process became much slower, either trying to find the required functionality, or waiting for enpass to perform its tasks. To open the enpass windows app, you have to click on the taskbar icon, click the 3 lines menu, and select open enpass. In the previous version it was a simple double-click on the taskbar icon. When searching for credentials in the enpass windows app, there's a delay of at least 4 seconds before the enpass application responds to any input. After a computer restart I have to wait for at least 10 seconds for the chrome plugin, while it searches for the windows application. In the previous version it was an instant password prompt. There are multiple other minor annoyances which when put together, significantly affect my efficiency when looking for passwords. And even though I paid for the iOS app, today I started searching for a new password manager software. It's a shame really because enpass was amazingly good before this "upgrade". Approving this "upgrade" for public release was not a very good decision. Please take this as constructive feedback, since I'm a fan of enpass and I would love it to succeed. This new version though was a bad decision.
  23. 5 points
    What's up everyone. So, I've just installed version 6 on all my devices. I understand it's a first release after major rewrite, although it's slightly shameful there are so many issues which could've been addressed in beta. First of all - Folders. I'm not gonna join the "bRinG FOLdErs BaCK REEEEE" circlejerk. I honestly like the concept of tags. Assuming it's well implemented. Which it isn't. It took me at least 15 minutes to figure out how to use subtags. The "Parent tag:Sub tag:Secondary subtag" syntax is so random and un-intuitive I would've never guessed it, have there not been for previously converted subfolders, now subtags. I'd still be trying adding 3 separate tags for each level or just trying stuff like "Parent tag/Sub tag/Secondary subtag" or whatever. This issue however lies more deeply. Tag cloud is in no way supported by autocomplete. Simply adding suggestions like when I type "devel", it'd suggest tag "Development" would save the situation. You know, like tags work EVERYWHERE on the internet. I have around 20 tags set up, each one had to be manually written in the input field. There's no freakin' drag'n'drop functionality to drop a single or multiple items to attach a tag. This really needs to be addressed. Then there's a random list of bugs I've also encountered: 1) macOS - the app keeps randomly resizing to default window size (which is freakishly small) 2) the all items list (or any other list) keeps randomly refreshing. I have a suspicion this is related to syncing (I'm using WebDAV). I'm scrolling down the list of about 100 entries and the list randomly refreshes, returning back to the top of the list.This is on macOS too. 3) overall lack of drag'n'drop - this was summarized in the "tags" rant at the beginning of this post, but it just feels weird. I've trashed several of my entries by accident (used to "backspace" being an archive shortcut, not trash). I honestly thought "iz okay Numline1, you'll just select them all and drag and drop them into the archive folder". Well, fuck me, that's not happening. Some folders seem to be able to do drag and drop, but it's so random. Now, just so I don't seem like "random bitchy internet user", I have to say, there are some bright sides. The new UI is lovely and a welcome change. The WebDAV sync with Nextcloud finally works (although it's sad we had to wait until next major release for that). The multiple vault feature is nice as well. Anyway, thanks for reading this, I really hope some of this stuff gets fixed and improved in upcoming weeks!
  24. 5 points
    Hi there, I am happy user of Enpass and I have - like many others - recommended it to many of my friends. However I am completely unhappy with: 1- Pro version for Desktop - your main motto is: "desktop version for free" - it is NOT ANYMORE as you have removed few free-till-now features and included them ONLY in Pro version 2- main reason I bought Enpass is its capability of multi OS synchro - I bought iOS version and Android version. Together with MacOS version I am a complete user. The problem remains: I need to pay 3 times now (considering the point above). The answer from the developers that it is IMPOSSIBLE to merge buying from Google Play and Apple Store is just an EXCUSE - the versions on stores could be "light" or "free" while user could have activate Pro versions by using another credentials. All above is making me looking for the alternatives and for sure I will find one soon. Not me only but everybody who is unhappy for this greedy approach. Seeing on this forum (but not only here) how many people realised that version 6.0 brought completely new way of treating the customers it is only a matter of time when someone will come with more user friendly versions. Again: I am not against payment. But I am against paying 3 times for the main feature of Enpass that is: multi OS synchro.
  25. 5 points
    As a former software engineer, technical lead and software architect for major aerospace software systems, I know a thing or two about what happens when proper design, development test and release procedures get short-cutted and this appears to be what happened here. The result is a product which can either go forward with lots of band-aids, bailing wire and spit holding it together (making maintenance a nightmare with limited reliability and success) OR a product that can be withdraw, reworked without the pressure of dealing with multiple daily reports of wide-ranging and serious bugs. I am attempting to be constructive based on my experience with software development in both types of environments - when development followed a sound set procedure through the process from design to release, and when shortcuts were taken to satisfy political, management, or marketing desires. I'm merely asking Sinew Software to withdraw a release that was clearly "not ready for prime time", and redo the effort properly with the technical process, issues and progress dictating release schedules rather than whatever pushed this one out the door before it was finished. Other major software development organizations have done this in the past, and users who see a company ready to admit a mistake then take proper action to fix it generally end up with higher regard and satisfaction with the developer than for those developers who "press on" with a bug-laden product, trying to pretend all is copacetic. In the end, the latter decision hurts the bottom line and ends up defeating whatever management / marketing decision drove the "pre-mature" release. I have downgraded to version 5, turned off auto-update for the extensions in the various browser that allow that, instead of having purchased the prime option on v 6 which was my intention though I did not need the features, but more as a reward for a an application and browser extensions I used and found perfectly met my need. But now, unless they take the proper action to fix ALL the issues in version 6 (withdraw, re-work, re-release being the proper way instead of endless little ad-hoc patches), I will be done with any / all products related to Sinew Software an use one of the password managers built into my internet security suites or available from another vendor at a reasonable price.
  26. 5 points
    Yes! Please bring this back. If Android is safe enough to offer this, then I can't imagine Windows 10 not offering the hooks. Apart from the convenience: I really don't want people to be able read along when I type my master password. So actually one could argue that not offering Windows Hello on the first start-up , could actually be interpreted as a security flaw/risk... (imagine standing in a crowded metro trying to log into something). So please bring full-time Hello back, I had got myself a license for the UWP app just to have this! And @tox1c90 : it's even worse than just after a fresh boot: if you don't leave Enpass running in the task-tray it'll NEVER offer you Windows Hello login
  27. 5 points
    Along with open sourcing, external audits which has already been asked for, i'd really like to be able to opt out of google analytics and (other?) tracking mechanism. this is a password vault, it feels sorta creepy
  28. 5 points
    Hi, Is it possible to create a new category for faster access to TOTP as on my picture. With a click would be possible to reach all TOTP codes, and it would help find TOTP codes faster on the job computer where I can not install Enpass.
  29. 5 points
    The issue has been fixed now! Guys, we deeply regret the inconvenience caused to you with an understanding of the situation there with you where every time you have to see the flash of Enpass helper (as extension window). But truly speaking this was a very nasty bug hidden behind the layers of OS causing the extension to go out of scope if the browser was started after the Enpass. And while in process of fixing this issue we were in such an unsettling situation that we were not able to update you with any expected ETA. Well, this weekend we made ourselves to resolve this issue, and finally, it has been squashed now. The fix will be available to you in the upcoming beta version very soon. You can get the updates for beta versions here in the Forums: https://discussion.enpass.io/index.php?/topic/1161-enpass-beta-v55-for-desktops-brings-attachments-support/ Thanks for your understanding and co-operation.
  30. 5 points
    +1 If you choose not to share the source, its sorta up to you to pay some third party to review the code with NDA. And as Gili said, no one expects reoccuring audits. Its mostly, or at least about customers needing to know that you've implemented cryptography in a acceptable way and of course that there are no additional ways in to a running process of Enpass.
  31. 5 points
    Hi @DustinDauncey, Here we are planning to introduce a rich icon support for URLs and of course, our team is putting vast efforts to deliver the best. At the moment I can't confirm any ETA. Keep suggesting. Thanks a lot
  32. 4 points
    These days, it's hard to not leave behind a digital footprint. People can often learn a lot about you just by googling your username. I think that Enpass could really help solve this problem by offering a random username generator. The usernames could be nonsensical, or they could be created from a predefined dictionary. It would also be nice to have a general random generator so that you could generate random values for any field, but I think this would be more difficult to implement. One possible use case would be randomly selecting an email to use from a list of your email addresses, which would also make it harder for people to track your online activities.
  33. 4 points
    I talked with a colleague about password managers and he suggested 1Password. On the website of 1Password I saw on the "Tour" site (https://1password.com/tour/) some features of 1Password. One feature is very interesting and increasing the security: They show which sites in your vault support TOTP but the user has not set up TOTP. Here is a screenshot from the 1Password site: Suggestion In Enpass add the entry "Missing TOTP" in the section "Password Audit". Here you should show all password entries, where TOTP is possible but not set up by the user. Here is a list of services that support TOTP: https://twofactorauth.org/ We had a Doxxing scandal in Germany where a young guy published many private information stolen from accounts of German politicians and German celebrities. This guy was able to steal the data because the accounts used very weak passwords (like 123456) and were not secured with TOTP. So this feature increases the security a lot!
  34. 4 points
    Hey @dvdr, The suggested feature is already in our roadmap and will be available with the subsequent update. Cheers!
  35. 4 points
    Hello, I think being able to sync multiple vaults with one cloud would be a big benefit! I love the idea of multiple vaults in Enpass, but having to use different clouds is a bit of a pain - I would like to have them all in one place. Could you please add support of multiple vaults for the same cloud? Thanks!
  36. 4 points
    +1 As a long-time, very satisfied Enpass user, I'd like to echo the sentiments here. To be clear: I'm not upset that you made a major upgrade to V6, I'm upset HOW you did it. Personally, I am tech savvy, so I was able to help myself and my partner to upgrade to V6. However, my partner had NO CHANCE at all to upgrade herself and had already started to panic (passwords missing, devices not syncing), when she asked for help. In short: the upgrade experience was catastrophic. 1. Because I loosely followed the beta program for V6, I remembered reading that V6 vaults aren't compatible with V5 and that the upgrade from V5 to V6 is a "one-way" operation with no backward compatibility to V5. I thought that was a beta-issue only and would be solved in the release. That incompatibility caused my and my partner's devices to literally break apart, because sync just stopped. No message, no error, no warning, no instructions, no announcements. In our case, my partner lost a few passwords during the upgrade and broke sync between her devices. She had added new passwords to her Android V5 over the last couple of days. Then the upgrade automagically happened through Google Play. When she opened the new version, the passwords were imported to V6, breaking backward compat with V5 still on our Windows devices (no auto-upgrade on Windows!). So when she opened Enpass V5 on Windows, the new passwords were missing, because they didn't get moved to V6 on Windows yet. So as far as she could see, passwords were inconsistent at best or lost at worst. 2. We use Windows 10 Pro, Windows 10 Mobile and Android Oreo and Pie in our household. The upgrade experience was different for each platform. I realize you don't control the platforms, but could you at least have provided some clear upgrade guidance for each platform? Android upgraded itself, Windows 10 Pro didn't and had to upgraded/migrated manually, Windows 10 Mobile … just ended without comment. 3. At no time were we made aware of a coming upgrade and/or its consequences - much less an opt out. Microsoft is better at this, and that's saying something! 4. There is no obvious way to roll-back and recover from a failed upgrade. Really?! That is essential! Again, even Microsoft handles their Windows feature upgrades better - the roll-back actually works. If something goes wrong, users MUST be able to roll back. Do you realize that some people have access to their ENTIRE DIGITAL LIVES stored in Enpass? Breaking that could literally ruin someone. Managing passwords and access is more critical than managing data - you have a bigger responsibility than Microsoft or Amazon, who run the world's cloud services. What saved us was that we had all kinds of different platforms and each one failed differently, which luckily meant that at least one Enpass still worked, in order to get at our master passwords. PLEASE DONT DO THAT AGAIN.
  37. 4 points
    Hey, I've signed up here just to reply to this topic. I have the same concerns - I'm very disappointed, because Desktop version was always free with all features included and it was one of the main reason for me to purchase Android app (don't actually need the mobile Enpass, but just wanted to pay for such a great product). Today I noticed that new version of Enpass is available, it looked for me like a great New Year gift. But when I opened the updated app on my MacOS, I realised that some key features which have been always available all the time for free (like Touch ID) - they suddenly became Premium. This is really confusing me. What I need to expect next? Version 7.0.0 will extract Cloud sync feature in some Super Premium plan and I will have to pay again, right? This must not work like this - this is just a cheating, it's not a right way to suddenly make free features non-free and ask user to pay for it to earn more money. This is weird to see that Enpass developers cannot merge purchases from other platforms - this is just another and very convenient reason for them to make people to buy their product again. I can leave without Touch ID on my desktop version, OK. But I cannot trust Enpass like it was before version 6 upgrade, very upset with this situation. Thinking about moving to another password manager Thanks
  38. 4 points
    I'm very disappointed with this update. Sync is broken, browser integration is broken. Everything was almost perfect in the previous version.
  39. 4 points
    It's sad to say but I think you released a poor beta of Enpass. When I follow all the topics in the forum and considering my own experiences, I am not sure If I should trust my Data to Enpass anymore. Let's see what is reported so far - Not working Sync - Not working Pro Upgrade - Not working Browser Extensions - Corrupted databases or missing passwords after upgrade - get charged for features that were free in Version 5 Considering all of this, I ask myself two things 1. Have you tested your Software and Plugins before the release or was it more important for you to get money from your existing users? How can I trust a company that releases a bad beta version an a final realease that handles personal and confidential data? 2. What will come next when now ask for money for old features? What kind of business is that? For new features, ok. I would be willing to pay on order to support you. But not this way. I really thing about to switch to another products now.
  40. 4 points
    Hello Enpassians! The first Enpass 6 beta for Linux has just arrived with the following awesome features: Multiple-Vaults: Now you can share data with you family, friends or team members by using multiple vaults. Each vault must be synced with separate cloud account (could be of same service provider) for syncing. Keyfile Support: You can now additionally use a Keyfile with the master password of your desired length i.e. with the use of Keyfile there is no restriction on minimum length of 10 characters on master password. Cloud Sync: An improved cloud synchronization mechanism with Google Drive, OneDrive, Dropbox, WebDAV and yes, the iCloud as well. Secure Sharing: Enpass now allows you to explicitly encrypt a shared item using your own Pre-Shared Key (PSK). You can define the PSKs in Enpass Advanced settings. New Browser Extensions: Don't forget to download and checkout our new browser extensions for Chrome and Firefox browser with an improved autofilling and form capturing to allow you to autofill in pages with more than two form fields and lot more. Custom Categories and Custom Templates: Manage your data the way you love by defining custom categories and templates. Custom Icons: Add your own icons to the items. Trash: Added support to Trash the items. Archive: You can now archive the items which are no longer in use, but you don't want to delete them forever. Also the archived items don't appear in search results. Get it Now Important Notes Supported Platforms: Beta versions are available only for systems with 64 bit architecture, and through the Debian and RPM repositories. Tested on CentOS 7, Fedora 24 and Ubuntu 14.04 or later (64-bit only). Separate app: Beta version of Enpass 6 will be installed as a separate app and will not replace the existing data of Enpass 5 on your device. So you can freely use the beta without worrying of any data mixup. Restoring database from Enpass 5: The only way to restore your existing data from Enpass 5 to 6 is through restoring your Backup file from Welcome Screen. In case you have already used Beta version of Enpass 6 on any other device and have synced it to cloud before, you can restore from there. Synchronization: Enpass 6 is based on a new architecture and will not sync with the existing data of Enpass 5 on cloud. So this way you can use your existing cloud accounts to test the sync in Enpass 6 without any mixup of existing data. Also, the Enpass 6 places the data on cloud into the designated App folder unlike it used to do in the root folder for Google Drive, and OneDrive. These changes will restrict you from restoring of existing data from cloud and you have to restore your data using a backup file. All beta versions are precursors of final products. They are intended for testing purposes only and should not be used any place where your data is important. Please backup your database before testing a beta release. The beta app may contain some features that are still in development and not fully functional. Waiting for your feedback. With Love to our Linux users!!❤️❤️
  41. 4 points
    please would like to implement a key or file for authentication beyond just the password ? and can also add 2 -factor authentication to open the keychain sorry bad english
  42. 4 points
    An interesting and important question that was already raised, but not yet answered, in another thread: Is Enpass' built-in password generator part of SQLCipher or otherwise (if yes, how so?) open source and therefore trustworthy? I currently feel no need to demand to make the whole application open source as long as the security-relevant parts are. But the password generator is one of these and therefore a reassuring answer would be nice. If it's not open source, what are the plans in that regard? If it is, I think you should advertise that on your website, too.
  43. 4 points
    Enpass on desktops should be split into two separate programs: EnpassCore.exe: This executable file constitutes the core Enpass service that browser plugins communicate with. It should have no window-based-UI whatsoever. This is also what users (and/or the installer) would add to the boot sequence. On boot, adding an icon to the tray (on Windows) or the menu bar (on OSX) would be the only clue it is running. EnpassUI.exe: This executable file constitutes the windowed UI. If EnpassCore isn't running, launching the EnpassUI would automatically launch EnpassCore as well. From any browser plugin, EnpassUI should never be more than a single click away. Benefits: EnpassCore has no windowed UI, so we could launch it as part of the boot sequence without having to deal with the annoying Enpass window being opened on every boot. A UI window should be in in one of the following states: opened, minimized, maximized, or closed. Since EnpassCore is always represented in the tray and EnpassUI is independent of that, there would be absolutely no need for the additional and unusual "minimized but in the tray" state Enpass currently employs. By separating what should be purely a background process from the front-end UI, we can eliminate the need for the quirky "minimize to tray" option and also say goodbye to the bothersome "Click here to restore Enpass" message that is shown every time Enpass is minimized to the tray on Windows 10. In a nutshell, how and when we require the UI for data lookup or data entry should have no affect on whether or not the Enpass service is running in the background. Because EnpassCore has no windowed UI, it could be very "lean and mean", thereby not noticeably impacting boot performance (assuming it's implemented as a native C/C++ application). For those people who are used to (or like) the way Enpass works now, there is no difference. Users can still add EnpassUI to the boot sequence and have the Enpass Window opened on boot if that is their preference. Technical thoughts: Architecturally, browser plugins and the EnpassUI would just be different clients of the same EnpassCore application. In the interest of a shared code base and developer productivity, EnpassCore would ideally be implemented as a C/C++ program that can be compiled on any of the platforms Enpass supports. I chose the filenames EnpassCore.exe and EnpassUI.exe only as a way to more clearly communicate their purpose. Nothing more. The filenames are not part of this suggestion. It would probably be best if EnpassUI is named enpass.exe, so that launching enpass.exe would open the windowed UI as it always has. In this way, people who don't know about, care, or want this change wouldn't be impacted by it at all.
  44. 4 points
    +1 It's funny to hear that ensuring that your cryptographic product is in fact secure is not worth the effort. Other apps come to mind: Signal, Telegram, Veracrypt. All cross-platform, all frequently updated, all audited. Oh, and they're all free.
  45. 4 points
    Hi guys, Thanks for your suggestion. We are on it and our dev team is working hard to bring this feature ASAP. I appreciate your patience in the meantime. Cheers!
  46. 4 points
    At least an answer please? AFAIK "Security of our data is your utmost priority." We have questions and thoughts, yet there is not even an answer from the maintainers. This itself means a serious security concern.
  47. 4 points
    Hi @h4waii, The decision of 24000 iterations was taken few year back to ensure compatibility between all possible supported devices without any significant effect on performance . Now every device has more computing power and we certainly need to upgrade number of iterations. We are planning a major UI/database/sync engine redesign of Enpass next year, that will be perfect time to implement this.
  48. 4 points
    Yes thats great but it would be greater to access the enpass menu bar icon by shutcut. For example: the Mac AppStore asks me for my password, i press alt + Space (for example) the enpass menu is comming up end i can directly start typing "iTunes" and select/copy the password by keyboard. Everything without using the mouse.
  49. 4 points
    This would be absolutely an interesting feature. However, instead of storing only pictures, I'd prefer to have the possibility to import in a protected area also pdf files.
  50. 4 points
    Hey guys! First of all, I would like to express my feelings of extreme happiness on seeing the first two posts of feature request on our Forum. Thanks a lot on behalf of whole Enpass team. The portable version is almost done and very soon we will release the Beta version of that. And you would be happy to know that along with being portable it will be cross-platform at the same time. Also we will add Forum for posting topics related to Beta version and hopefully it will help us alot in ameliorating the quality of final product. Once again, thanks alot for your efforts guys and keep posting!!
×
×
  • Create New...