Jump to content
Enpass Discussion Forum


  • Posts

  • Joined

  • Last visited

  • Days Won


Everything posted by Ivarson

  1. The possibility to add a Checkbox as a field type would enrich Enpass slot, it's easy to add a secure note, but with checkbox as an option it would even smoother to add shopping lists or whatever, especially when using a shared vault. Having appear also on my Wear OS watch would be awesome (the Notes field doesn't show on Watch, one has to add a multi-line using the watch)
  2. Yes please add pcloud sync the proper way
  3. The integration he's talking about isn't about storing Enpass vauis. It's secure way for password managers to supply credentials for encrypted vaults in Cryptomator. In the world of Android and ios, there are already Autofill-api:s natively builtin, but in windows and Linux there's no native alike. Today you have to copy and paste passwords into non-websites when using Enpass for desktops, which sucks since the clipboard is a poorly guarded buffer. Many of the KeePass derivates has kickass _autotype_ (not autofill) functionality for desktops which doesn't rely solely on the clipboard. The best one, hands down is keeweb IMHO. With keeweb I don't even need a browser plugin with keeweb, when having an app or website in focus, I hit a key combo and keeweb fetches the windows title and tries to read the url if using Chrome and enters the saved creds like a keyboard would. I'd also like Cryptomator-support like suggested here, but autotype would be a killer too for any kind of app.
  4. The functionality in the watch app is sufficient, but it's the only app I use on my watch that doesn't provide dark theme. That would look way nicer and also save battery on the watch
  5. The browser plug-ins just tries to connect to a certain port on your pc that it knows Enpass would listen to, be it the portable or the desktop version. The portable Enpass in turn does not look in the same directories for databases as the desktop version, so yes you have to to do a restore or start over fresh. If you had Enpass installed from Microsoft Store, the vaults and configs will be removed along with the app being deleted. If you had it installed using the EXE (downloaded from their website) the vaults are still there after uninstall, but again not looked at by the portable version.
  6. I don't quite get the question, but if you use the portable edition, you don't have to have any desktop apps installed, but if you want the autofill functionality in Firefox, the same plug in is needed as with the desktop versions of Enpass. To switch from desktop to portable versions, you're recommended to either start a new vault in the portable app and sync the items down from your cloud provider (if you used sync), or you make a backup from the desktop app and restore it during launch of the portable version.
  7. Didn't even know pCloud had dav-support. However they seem to disable it if the user has MFA activated (which you should have) https://community.cryptomator.org/t/webdav-urls-of-common-cloud-storage-services/75
  8. There's no pCloud-support, I'd file it in Feature Request-section. The latter question is true though, all the available sync providers in Enpass are usable for all platforms, and as long as you sync with the same credentials on every device you'll have the same data.
  9. Yes on both. There's folder sync as an option. Just point out the mounted USB drive. There's also the portable version of Enpass that stores not only the vault but the application itself on a flash drive Regarding the cloud sync, there's an option when you disconnect the sync provider whether data in the cloud should be removed or not. But cloud sync isn't made as an onetime backup operation so you just have to setup sync, then wait a few seconds for the sync to cloud to complete then remove the sync again.
  10. With webdav you can have several vaults syncing to the same server with the same credentials, as long as the paths are unique. (I believe)
  11. why are you not encryping or at the very least obfuscating the names of a users cached favicons when this is enabled? I know, the icons are only cached on each device not synced to the cloudproviders, and if your OS content can be read by someone else it cannot be assumed to be secure yadayada. But on a shared- or work-related machine, Im pretty sure a Enpass-user expects the entries to be confidential as well. So if someone has a strange affection to... crows, whatever, there will be a login.ilovecrows.com within %AppData% or the portable directory. If someones has several hundred entries, it gives quite alot intel about that person.. This applies to the Portable versions as well, so having website icons enabled on Enpass Portable on a USB stick means youre running around with all the URL's in your vault unencrypted.. There's no disclaimer or warning in Enpass about this, nor on the link https://www.enpass.io/support/kb/beta/what-happens-when-i-enable-website-icons/ that you provide from within Enpass. Just store them within the main vault and save your API's some queries, or at least encrypt them separately..
  12. When I long press Enpass icon on Android and select Add new item through the shortcut menu, after unlocking Enpass it shows an empty list of categories until I actively switch the vault. To add something to the primary vault I have to select a second vault and then back to the primary. Enpass 6.6.7 510 Android 11, oneplus 7T
  13. That can be done by editing a Password-property of an item (click the label Password) and select "exclude from audit" or whatever the translation says. The exclusions will show up on the Audit dashboard as "Excluded"
  14. Yes, the local vaults will continue to work if the sync providers is being disconnected or malfunctions, the local backups in addition gives you the ability to restore the vaults to a version created way back (if you discover some severe errors that's been laying around for some time)
  15. First of you have to select the vault you want to copy /move from. Do that by selecting the vault in the upper left corner. Then you can select one or many items and click "Add to vault" >move /copy. Backup is a good idea, but there's already automatic backup enabled by default on the Desktop versions (to local drive). It'll keep the last 60 vault-versions or so which can be tricky on some cloud providers
  16. Not sure that's what op meant. If you edit and save Item A, then immediately go and edit Item B, the automatic sync process will discard the edits your doing in Item B if you're not fast enough to hit Save, which will reset the timer and buy another 5 seconds.. Perhaps you could suspend the timer to autosave if user is currently editing an item, or not discard the edit during reload of a database.
  17. No, the primary vault won't replicate to any additional vaults if that's what your after. It's sole purpose is rather the opposite, to segment items, like private vs work. You can copy or move items (one or all) between vaults though as a onetime operation. The cloud providers supported in Enpass are mostly oath-based so there shouldn't any any difference between which OS or device you're using
  18. On top of that, you have to add that Enpass is closed source, and makes outbound requests while the database is decrypted. So even with a yubikey, but yeah it would still be a huge improvement
  19. Hi @Vinod Kumar Couldn't there be a "flightmode" or something in Enpass? Or would such feature have to small audience? Supplychain-attacks aren't going away and with more and more builtin connectivity the risks for such inevitably increases. I'm thinking that would shut most outbound requests off. Disclaimers of less functionality, the need for manual update-checks, no favicons etc.
  20. There's no continuous dependency between any browser and Enpass. When you setup sync or perform a restore from cloud, Enpass gets a token from the browser. That's why the currently logged on user matters. When that's finished you can safely logout and login as another office 365 user without affecting Enpass
  21. Enpass only supports one primary vault. There's no selection involved, the primary vault then opens all the additional vaults that are configured. In your case you need to make sure that you and your wife has separate logins to the computer itself. That way you can also have separate primary vaults. Do note that the Account for App itself is only used for subscription / licensing purposes and is not tied to your vaults at all, so sharing that with your wife doesn't imply sharing vaults or items.
  22. Simple cosmetic request. Implement a setting that only shows the Categories which has any associated items in the leftmost pane, basically hiding empty categories. I know you can hide the categories manually, but it makes sense to have this done dynamically.
  23. here's an idéa. You've taken steps so that Enpass is now relying on your servers for licensechecking, fetching favico and probably something more. At the sametime we're in a pandemic where it's difficult for people to maintain security and integrity for some tasks. This includes sharing sensitve stuff like logins and passwords. For a mature organisation, there's probably less need for this internally since there's SAML, AD, AAD and other means, and of course if everyone has Enpass, you can share encrypted cards securely over email as long as you can get the PSK over in a secure manner. I do think that Enpass doesn't hit the above scenarios, so many users would appreciate a secure manner to sent creds But for those cases where you're communicating with an external member, or someone that doesn't have enpass, maybe you could implement a web-service that stores a chosen Item of Enpass making it possible for someone to retrieve it if they have a password provided through another channel. The item uploaded to, say, https://secret.enpass.io is of course end-to-end encrypted so there's a zero knowledge architecture here aswell. Upon visiting the link and providing the right password the items details are shown in the browser, and perhaps there's an "Import to Enpass" as well, although that's something overrated perhaps, it can be achieved through sending an enpasscard over email (unless it's blocked) The uploaded item is hardcoded to be temporary stored on your services, being deleted after first access of the provided link that the poster gets, or after 24 hours or something.
  • Create New...