Recensioni per KeePass Tusk - Password Access and Autofill
KeePass Tusk - Password Access and Autofill di Brandon Davis
104 recensioni
- Valutata 5 su 5di Utente Firefox 14217287, 6 anni faReally good addon! everything works like expected.
The only negativ thing is you cant edit or add entries. - Valutata 5 su 5di Utente Firefox 12343667, 6 anni fa
- Valutata 5 su 5di Utente Firefox 14172065, 6 anni fa
- Valutata 5 su 5di Utente Firefox 14168721, 6 anni fa
- Valutata 5 su 5di Utente Firefox 13101885, 6 anni fa
- Valutata 5 su 5di Utente Firefox 14092311, 6 anni faI'm giving it 5 stars, but with two minor crits.
One: you don't include sync.com as one of your cloud providers, which, given that they're probably one of the most secure options available (even they can't access your data) is a shame. I keep my kdbx file in my sync box, but I was still able to add it as a valid option by using the "local file" option. (Like most cloud options, they provide local file access).
And, having added that and my keyfiles, and entered the master password, I duly went hunting for a trial site to test it on. This is where you scored big time. I have been a Keefox user for a couple of years. Up until firefox went quantum and keefox went bananas and ditched the most important functionality in their plugin. I refer to the ability to use the extension simultaneously as bookmark database AND autofill ("Find and Fill" functionality).
If I want to login to one of my email accounts, I just want to type in email and get a reasonably short list of contenders, click on the one that matters, get taken to its login page and have the username and password fields completed automatically. Keefox stopped doing that and made it clear that they weren't even going to try to find a way to do it which would be compatible with the new Firefox environment. Their ludicrous suggestion was that I bookmark the relevant password protected sites. (I have over 800)
But you've done it. And what you've sacrificed to make that possible is entirely rational and makes much more sense than what they've done.
Setting up the username and password for an account is something you (generally) only do once for a given account. But you might visit that account thousands of times. Which would you rather lose - the automatic capture of credentials (a one off) or the automatic "find and fill" option which you'll need forever? It's a bleedin nobrainer!
The second criticism actually cost you a star, until I figured out my mistake and edited this review. You need to make the "remember" option slightly more obviously relevant to the PASSWORD DATABASE. I looked at it and ignored it, (assumed it was site specific instead of relating to the password file) after "find and fill" on my first test site. Went to another and the sodding password file was locked. That was because I'd left the "remember option" on "don't remember" instead of my preference (remember until browser exit).
Otherwise thumbs up
2 observations after a couple of days using it:
1 Displaying the Keyfile name is almost as bad as displaying the password in plaintext. Strongly suggest you hide that.
2 Can we have a way to store preferences (like the "Remember" option above)Replica dello sviluppatore
pubblicato il 6 anni faHey there! There's a lot here to respond to, but I'm going to try.
1. Sync.com is completely impossible to support. They provide no developer APIs or authentication. It's a shame, but no amount of effort on my behalf will make sync.com work.
2. Making the remember password meaning more obvious is definitely a goal. Actually, a lot of the controls in Tusk need better explanation. I'm pretty much out of space to put anything else on that line, but a hover dialog or something in the wiki is needed... I agree with you there.
3. I disagree that showing the keyfile name is bad. KeeWeb, KeePassXC, and KeePass2Android all do this. The keyfile doesn't provide security by being "obscure", i.e. a secret file on your computer. It provides a second factor of security. You combine "something you know" (master password) with "something you have" (a keyfile) to get strong encryption. Google "security through obscurity" for a great discussion on this topic.
4. Do you mean exporting settings so you can move them between browsers? This would be a great feature, but right now there aren't very many settings to keep track of, so it isn't much of a burden to get set up how you want it. As the settings complexity grows, I imagine this will happen.
Thanks for the detailed feedback and review! - Valutata 5 su 5di RomanK., 6 anni faI moved from Chrome to Firefox and looked for keepass-less solution for on Firefox similar to CKP on Chrome.
Tusk just filled CKP's boots perfectly.
Maybe only one feature could be improved is to able keepass key file from cloud and not locally, but that is not critical for me as long as is database is available online.
In ideal world to be able to edit database, but that is also great for me as read only.
For me it was last and completing step from migrating from Chrome to Firefox, TY!!! - Valutata 5 su 5di Utente Firefox 14005669, 6 anni faOne of my "required" add-ons. Although it seems to be broken on Ubuntu 18.04 with Firefox 59, It works flawlessly in Chrome.
Get it nowReplica dello sviluppatore
pubblicato il 6 anni faThank you! I'm looking into the ubuntu 18.04 issue and will hopefully be out with a fix soon.
EDIT: Documented in https://github.com/subdavis/Tusk/issues/146 and due to ibus/ibus bug
The pop-up can be accessed in a normal tab.
1. Navigate to about:addons in Firefox
2. Click preferences next to Tusk
3. In the address bar, change options.html to be popup.html
You can bookmark this page for quick access. - Valutata 5 su 5di hedgie, 6 anni faWorked like a charm, but then I imported the same local db and key file on fresh firefox and ubuntu 18.04, clicked tusk icon and got the message 'unlocking...' and then it's over. never got to the menu to even enter the password. Dev is very responsive on git so keep it up!
- Valutata 5 su 5di Jimmy Pautz, 6 anni faWay better than KeepassXC-browser. The "Shared Link" thing doesn't work with OneDrive either...but regular OneDrive connection works.
- Valutata 5 su 5di Utente Firefox 13982396, 6 anni faBest solution I have come across. Password not stored indefinitely, allows sharing links from nextcloud to only the encrypted database, handles the odder sign in systems (google) where autofill failed and, best of all, a simple good looking UI capable of all but deep entry editing.
- Valutata 5 su 5di timendum, 6 anni fa
- Valutata 5 su 5di Utente Firefox 13932668, 6 anni faBrilliant! Easy-to-use. Just a bit of a lag to reopen the database on each invocation but not really annoying. Could probably speed it up by working with a local copy instead of cloud-based version.
Any chance of a form filler too (addresses, credit cards, etc)? :-) Echo other reviews requesting ability to write to the database too. e.g. automatically recognize when a new site is used, offer to generate and save password.
I'd be happy to pay an annual subscription fee and contribute to the project to ensure ongoing support and development and to ensure that it remains secure, ad-free and open-source (?) - Valutata 5 su 5di Utente Firefox 13664140, 6 anni faI was looking for an alternative to KeePassXC-Browser and found Keepass Tusk! Perfect to avoid opening KeepassXC each time I want to fill passwords. Morevoer Keepass Tusk works flawlessly contrary to KeePassXC-Brower which requires to connect again and again.
- Valutata 5 su 5di Utente Firefox 13688440, 6 anni fa
- Valutata 5 su 5di shikhanshu, 6 anni faIf there's only one extension you'd want to install on Firefox or Chrome, it will be this. I cannot imagine life without it and it is absolutely perfect at what it sets out to do.
- Valutata 5 su 5di Utente Firefox 13904242, 6 anni fa
- Valutata 5 su 5di Utente Firefox 13884443, 6 anni faUPDATE: The developers comments below are correct, I did confuse the keyfile with the database - I don't even use a keyfile for my database. Thanks for clearing that up. Five stars!
Replica dello sviluppatore
pubblicato il 6 anni faOriginal reply:
Hey there! I just want to let you and future readers know that database corruption with Tusk is completely impossible.
The reviewer above simply got their keyfile and database mixed up. When tusk tried to decrypt their database, either they tried to decrypt their keyfile instead of their database or tried to use their database as a keyfile.
Your keyfile goes in the "manage keyfile" tab.
Your database goes in the "manage databases" tab.
Please be aware that Tusk cannot under any circumstances corrupt your keepass db. It does not have write access to any cloud providers or direct filesystem access, and cannot modify your keepass db in any way. You should always keep a backup anyway, but Tusk never requests write permissions to any third party storage.
Update:
Thanks for updating your review!! Most people never bother doing that :D - Valutata 5 su 5di Taz, 6 anni faThank you so much for bringing this to Firefox! Proper Keepass support was the only reason I was still using Chrome and could't use Firefox as my default browser.
Replica dello sviluppatore
pubblicato il 6 anni faThanks for being an awesome user and taking the time to write a review :) - Valutata 5 su 5di Dimitrios, 6 anni fa
- Valutata 5 su 5di Utente Firefox 13147762, 6 anni faA good alternative for the outdated CKP as seen in https://www.reddit.com/r/KeePass/comments/7ojc50/security_flaw_in_chrome_keepass_ckp/