I intended for this entry to follow an entry on the importance and techniques for maintaining internet account security. However, the information I have on installing KeePass2 is ready to go now, so I'm going to post them out of order. So, assume I've already made the case you that you need to install this software and use it!
I use some bits of many of these techniques (except #1 & #2)
If your computer runs on MS Windows, Linux, or MacOS (OS-X); then you can download and use KeePass2 to manage your passwords downloaded latest KeePass2 version for MS Windows computers.
If your system uses default settings, then your browser will store the downloaded file in the “download” directory.
Double-click the .msi or .exe installation image to begin the installation:
Select "English" & click [OK]
Click [Next >]
Select the “[X] Master Password” and create your own new master password. The dialog includes a tool to tell you the relative strength of your new master password file – try for a password for at least 32 bit strength and 64 bit provides much MUCH better security.
You must remember this new master password or you will never get access to the passwords contained in the database again - you may want to write it down somewhere.
Save the new password database as a file.
After you start KeePass2, it will look like the image below. Simply start adding password groups and entries and begin putting all of your password and account details in these entries.
This is what the new password entry window looks like. Give the entry a meaningful title, supply it with your username and password, and provide any additional useful information (URL & Notes) so that the entry is most useful to you.
I am busily transferring all of this account information into KeePass2 although it will take a while to complete the task.
Introduction
With our technological society and need to keep some of our lives private, such as our bank accounts, we have to maintain a huge number of passwords to ensure our secure communications.
Problem
The problem is that we just can’t memorize this huge number of unique passwords. So we resort to alternative crutches. Some memory crutches that I’ve heard include:
- Write passwords on a file on your computer (very bad idea)
- Write passwords on a piece of paper and keep it near your computer (may or may not be a bad idea – depending upon the details).
- Reuse your passwords among many websites (bad idea)
- Use easy to remember passwords (pet or people names, words from a dictionary, etc.)
- Create a password formula to calculate new passwords for you (may or may not be a bad idea – depending upon the details).
- Create a password hints file (not a great idea but less bad than most).
I use some bits of many of these techniques (except #1 & #2)
Password Vaults
One way to avoid many of the pitfalls of these 6 methods is to use a secure & encrypted password vault.
Password vaults stores your password in an encrypted and secure database that cannot be read by anyone who does not know the master password. This provides the convenience of keeping your password “cheat sheet” on your computer and it provides you the security of very good encryption.
Password vaults stores your password in an encrypted and secure database that cannot be read by anyone who does not know the master password. This provides the convenience of keeping your password “cheat sheet” on your computer and it provides you the security of very good encryption.
Setting up KeePass2
KeePass2 is a freeware secure password vault is KeyPass2. It is maintained as Open Source code.
 |
| KeePass2 Icon |
 |
| About KeePass2 - from its website |
Download
 |
| MS Windows download from SourceForge |
Click on the [Download] button and you should see this screen:
 |
| Download started dialog |
If your computer uses OSX (Mac) and Linux, you can download KeePass 2.28 for Linux / OSX from the same site, but it takes a bit of poking around to find the proper file. I already did that poking around so you can just click on the link above to start the download and your download should start:
 |
| Download started for Linux/OSX |
If your system uses default settings, then your browser will store the downloaded file in the “download” directory.
Install
The remaining directions apply to MS Windows systems only. I will write an addendum to this shortly since I will be installing this software on my Linux server in the near future. Until then, OSX & Linux users, you are on your own.
Double-click the .msi or .exe installation image to begin the installation:
 |
| Launch KeePass2 installation executable |
You can install this software using default settings. Follow the on-screen prompts to use the default settings or change them if it suits you better. After launching, the first dialog that appears is the language selection:
 |
| Select Language |
Select "English" & click [OK]
Then next dialog will start the installation process
 |
| Start Installation |
Click [Next >]
KeePass2 should install from here
Configure
Launch KeePass2 by double clicking on its icon in your program files or on your desktop.
 |
| Create Master Password file |
Select the “[X] Master Password” and create your own new master password. The dialog includes a tool to tell you the relative strength of your new master password file – try for a password for at least 32 bit strength and 64 bit provides much MUCH better security.
You must remember this new master password or you will never get access to the passwords contained in the database again - you may want to write it down somewhere.
Save the new password database as a file.
 |
| Save database as a file |
Save database file in a location on your hard drive that you will regularly backup – such as your desktop.
 |
| Save in a location that gets backed up |
Create KeePass2 Entries
 |
| Create account entries |
This is what the new password entry window looks like. Give the entry a meaningful title, supply it with your username and password, and provide any additional useful information (URL & Notes) so that the entry is most useful to you.
 |
| Account details |
NOTE: you can let KeePass2 create new more secure passwords for you. Just have KeePass2 create the new password and use it to change your existing ones.
Use KeePass2
Once you populated your KeePass2 with important account information, you will need to know how to use it.
Method 1
Select the appropriate entry and perform a right mouse click (RMC). Highlighting the entry will display the summary information shown at the bottom of the window, the RMC provides the menu options displayed.
 |
| Copy account information |
From this menu, you can select "Copy User Name" or "Copy Password". After selecting the "Copy" command for your password, you only have ~12 seconds to paste it into the password field of your account before your system "forgets". 12 seconds is plenty of time to do the simple cut & paste unless something distracts you.
Method 2
If you hover over a field (e.g. username or password) and perform a double left mouse click (LMC), KeePass2 will copy that field into memory for the same limited time. This method is faster once you get the hang of doing it.
Neat side benefit
You might wonder, "Why should I bother to put the URL for your accounts into KeePass2?"
The answer is, "because then you can access all of these accounts directly from KeePass2." If you perform a double LMC on the URL portion of the entry, KeePass2 will launch your default browser to the location specified in that URL.
 |
| Account information can include URLs - you should put this information in |
 |
| Double clicking on URL, takes you to the designated website |
It allows you to access and log onto your accounts without using bookmarks or having to type the URL into the address field.
Other Benefits
Life Inventory
By storing your passwords and web addresses in a single transferable database file and securing it with just a single master password, this allows you to easily transfer all of your electronic account information to another person in the event you become incapacitated.
I highly recommend that this be used as a means of managing your electronic account information as part of your life inventory. Make sure to only grant your master password to someone you really trust or put your master password in a secure location like a Safe Deposit Box.
I highly recommend that this be used as a means of managing your electronic account information as part of your life inventory. Make sure to only grant your master password to someone you really trust or put your master password in a secure location like a Safe Deposit Box.
Make sure that you keep a current copy of the password file not attached to your computer and some place away from your computer.
Simplifying
My current password cheat sheet contains 26 pages of account information and password clues. KeyPass2 will very much simplify this problem and make it easier to find my passwords.
I am busily transferring all of this account information into KeePass2 although it will take a while to complete the task.
Archiving
If you use the single Master Password as I suggested, then you can copy the database file to any other computer with KeePass2 installed, enter the master password, and get access to your accounts. This means you can bring your password database with you wherever you go and use any computer to access your accounts (be aware that there are security ramifications to doing this though).
Alternatively, you can print your password database and store it at home, if home is a safe location to keep this information.
Alternatively, you can print your password database and store it at home, if home is a safe location to keep this information.
More Information
Get more information about KeePass2 from KeePass website.
|
| http://keepass.info |
No comments:
Post a Comment