With almost every web application requiring a password and adoption of universal login services like OpenID or Google Accounts still a distant dream, it is ultimately your memory that acts as the safest password manager for storing all those complex and secret passwords.
Too Many Passwords to Remember?
The memory, though a safe hideout, is not a very scalable solution especially when you have accounts across dozen different websites and you don’t use the same password everywhere. That’s where Password Managers enter the scene - these tools (often free) store your passwords in encrypted form and you just have to remember a single password for retrieving any other password.
There are three kinds of Password Managers - desktop based (offline), web based (your passwords remain accessible from all computers) or portable (carry your passwords on a USB stick).
Desktop based Password Manager
KeePass is a popular desktop based password manager that’s available for all operating systems and even some mobile devices. It stores all your logins and passwords in a single database that is protected by a one master password.
The password database of KeePass consists of just one file so can easily transfer stored passwords from one computer to another very easily. If you forget the master password, all your other passwords in the database are lost forever and there is no way of recovering passwords.
Online Password Manager
Online password managers work the same as their desktop counterparts except that all your passwords get stored on an external web server and can therefore be accessed from any other computer that’s connected to the Internet.
PassPack is a good choice for an online password manager since they provide a desktop client in case you want to access passwords in an offline environment. The desktop client is available for both Adobe AIR or Google Gears.
Build Your Own Password Manager
Most web based password managers have strict privacy policies and even the company employees do not have access to your password information.
However some people might still not feel very comfortable with the idea of storing all their sensitive data on another service. If you too fall in the same category, consider using Clipperz Community - this service lets you create a personal online password manager hosted on your own web server.
Clipperz Community Edition is open source and can be easily installed on any PHP enabled web server that has MySQL. Since the passwords are stored on your own server, you get all the benefits of an online password manager but the data is stored on your own server just like any desktop password manager.
Password Manager for USB Flash drive
Portable password managers are recommended when you neither want to save passwords on the web nor on the computer’s hard drive as there’s fear that someone else may get access to those passwords in your absence.
KeePass, the tool that I discussed in the desktop category, is also available in a portable avatar that can be safely carried on a USB flash drive, CD or even your iPod. KeePass runs without installation and won’t leave any traces once the USB stick is plugged out of the computer.
Related reading:
Find this article at: http://www.labnol.org/software/safe-password-manager-tools/6429/
web: http://www.labnol.org/ email: amit@labnol.org
Reader Comments
I am always surprised to see in articles related to Password Management that Pins (http://www.mirekw.com/winfreeware/pins.html) is never mentionned.
I am using this tool for 7 or 8 years now and it never failed me.
Among other features:
- Easy to select random password,
- You can sort passwords by category,
- You can select a shortcut to enter login and password,
- It offer the option to backup data with every save,
- Does not require an installer and works well on a USB Key.
The tool is free, not open source, nor actively developed but it works extremely well.
Written by David Segonds on 01.08.09
I have tried Clipperz & PassPack and now a big fan of PassPack. I still don’t trust a 3rd party with my utmost personal passwords (email, credit card, finance, etc) but trust them enough with the zillions of passwords I use for blogging about different web applications. The 1-click login makes it extremely easy to sue Passpack as a launchpad into day to day activities quickly.
Written by K on 01.08.09
Howdy…Thanks for the Info. I am going to create an online password manager in my own web server now…
Written by sheik on 01.08.09
Any post on password manager is incomplete w/o a mention of the best of them all, Roboform.
Written by Sridhar Katakam on 01.08.09
You can use Roboform, Its better than PassPack and more safer.
Written by monik on 01.09.09
I’d be a little reluctant to use Clipperz since it doesn’t appear to be actively developed, and there’s no way I’d use an online service.
You can however, use the beta version of KeePass and store your encrypted password file on an ftp server so it’s accessible from anywhere, which might be a decent option.
Written by Bill on 01.09.09
I can’t believe you didn’t mention LastPass.com
The ultimate password manager, has amazing features, includes form filling, online/offline support, one-time passwords etc.
Highly Recommended!
Written by Guy on 01.09.09
I agree with monik. Roboform (http://www.roboform.com) is far better than passpack. It comes as a Browser Toolbar, which makes it extremely easy to store and retrieve password when needed.
Written by Riz on 01.09.09
With a little elbow grease, you can also run Passpack on a USB stick: link
[thanks for mentioning us. cheers!]
Written by Tara Kelly on 01.09.09
I use KeePass on a daily basis and recently almost had a nervous meltdown when I couldn’t remember my master password for six straight hours:-)
Written by Cheri on 01.10.09
@K, User data is encrypted to prevent access even by Passpack without the password. If you are really concerned with security try the offline version.
@Cheri, It is a good idea to write down and keep a few copies of your password :)
Written by Mike Chelen on 01.11.09