Revisiones de KeePass Tusk - Password Access and Autofill
KeePass Tusk - Password Access and Autofill por Brandon Davis
Revisado por Usuario de Firefox 14092311
Se valoró con 5 de 5
por Usuario de Firefox 14092311, hace 8 añosI'm giving it 5 stars, but with two minor crits.
One: you don't include sync.com as one of your cloud providers, which, given that they're probably one of the most secure options available (even they can't access your data) is a shame. I keep my kdbx file in my sync box, but I was still able to add it as a valid option by using the "local file" option. (Like most cloud options, they provide local file access).
And, having added that and my keyfiles, and entered the master password, I duly went hunting for a trial site to test it on. This is where you scored big time. I have been a Keefox user for a couple of years. Up until firefox went quantum and keefox went bananas and ditched the most important functionality in their plugin. I refer to the ability to use the extension simultaneously as bookmark database AND autofill ("Find and Fill" functionality).
If I want to login to one of my email accounts, I just want to type in email and get a reasonably short list of contenders, click on the one that matters, get taken to its login page and have the username and password fields completed automatically. Keefox stopped doing that and made it clear that they weren't even going to try to find a way to do it which would be compatible with the new Firefox environment. Their ludicrous suggestion was that I bookmark the relevant password protected sites. (I have over 800)
But you've done it. And what you've sacrificed to make that possible is entirely rational and makes much more sense than what they've done.
Setting up the username and password for an account is something you (generally) only do once for a given account. But you might visit that account thousands of times. Which would you rather lose - the automatic capture of credentials (a one off) or the automatic "find and fill" option which you'll need forever? It's a bleedin nobrainer!
The second criticism actually cost you a star, until I figured out my mistake and edited this review. You need to make the "remember" option slightly more obviously relevant to the PASSWORD DATABASE. I looked at it and ignored it, (assumed it was site specific instead of relating to the password file) after "find and fill" on my first test site. Went to another and the sodding password file was locked. That was because I'd left the "remember option" on "don't remember" instead of my preference (remember until browser exit).
Otherwise thumbs up
2 observations after a couple of days using it:
1 Displaying the Keyfile name is almost as bad as displaying the password in plaintext. Strongly suggest you hide that.
2 Can we have a way to store preferences (like the "Remember" option above)
One: you don't include sync.com as one of your cloud providers, which, given that they're probably one of the most secure options available (even they can't access your data) is a shame. I keep my kdbx file in my sync box, but I was still able to add it as a valid option by using the "local file" option. (Like most cloud options, they provide local file access).
And, having added that and my keyfiles, and entered the master password, I duly went hunting for a trial site to test it on. This is where you scored big time. I have been a Keefox user for a couple of years. Up until firefox went quantum and keefox went bananas and ditched the most important functionality in their plugin. I refer to the ability to use the extension simultaneously as bookmark database AND autofill ("Find and Fill" functionality).
If I want to login to one of my email accounts, I just want to type in email and get a reasonably short list of contenders, click on the one that matters, get taken to its login page and have the username and password fields completed automatically. Keefox stopped doing that and made it clear that they weren't even going to try to find a way to do it which would be compatible with the new Firefox environment. Their ludicrous suggestion was that I bookmark the relevant password protected sites. (I have over 800)
But you've done it. And what you've sacrificed to make that possible is entirely rational and makes much more sense than what they've done.
Setting up the username and password for an account is something you (generally) only do once for a given account. But you might visit that account thousands of times. Which would you rather lose - the automatic capture of credentials (a one off) or the automatic "find and fill" option which you'll need forever? It's a bleedin nobrainer!
The second criticism actually cost you a star, until I figured out my mistake and edited this review. You need to make the "remember" option slightly more obviously relevant to the PASSWORD DATABASE. I looked at it and ignored it, (assumed it was site specific instead of relating to the password file) after "find and fill" on my first test site. Went to another and the sodding password file was locked. That was because I'd left the "remember option" on "don't remember" instead of my preference (remember until browser exit).
Otherwise thumbs up
2 observations after a couple of days using it:
1 Displaying the Keyfile name is almost as bad as displaying the password in plaintext. Strongly suggest you hide that.
2 Can we have a way to store preferences (like the "Remember" option above)
Respuesta del desarrollador
publicado el hace 8 añosHey there! There's a lot here to respond to, but I'm going to try.
1. Sync.com is completely impossible to support. They provide no developer APIs or authentication. It's a shame, but no amount of effort on my behalf will make sync.com work.
2. Making the remember password meaning more obvious is definitely a goal. Actually, a lot of the controls in Tusk need better explanation. I'm pretty much out of space to put anything else on that line, but a hover dialog or something in the wiki is needed... I agree with you there.
3. I disagree that showing the keyfile name is bad. KeeWeb, KeePassXC, and KeePass2Android all do this. The keyfile doesn't provide security by being "obscure", i.e. a secret file on your computer. It provides a second factor of security. You combine "something you know" (master password) with "something you have" (a keyfile) to get strong encryption. Google "security through obscurity" for a great discussion on this topic.
4. Do you mean exporting settings so you can move them between browsers? This would be a great feature, but right now there aren't very many settings to keep track of, so it isn't much of a burden to get set up how you want it. As the settings complexity grows, I imagine this will happen.
Thanks for the detailed feedback and review!
1. Sync.com is completely impossible to support. They provide no developer APIs or authentication. It's a shame, but no amount of effort on my behalf will make sync.com work.
2. Making the remember password meaning more obvious is definitely a goal. Actually, a lot of the controls in Tusk need better explanation. I'm pretty much out of space to put anything else on that line, but a hover dialog or something in the wiki is needed... I agree with you there.
3. I disagree that showing the keyfile name is bad. KeeWeb, KeePassXC, and KeePass2Android all do this. The keyfile doesn't provide security by being "obscure", i.e. a secret file on your computer. It provides a second factor of security. You combine "something you know" (master password) with "something you have" (a keyfile) to get strong encryption. Google "security through obscurity" for a great discussion on this topic.
4. Do you mean exporting settings so you can move them between browsers? This would be a great feature, but right now there aren't very many settings to keep track of, so it isn't much of a burden to get set up how you want it. As the settings complexity grows, I imagine this will happen.
Thanks for the detailed feedback and review!
151 revisiones
- Se valoró con 4 de 5por Linuxer, hace un añoBin bisher sehr zufrieden. Mich hat es an anderen Erweiterungen immer sehr genervt, das ich immer erst meinen KeePass auf dem Rechner starten muss, damit die Erweiterung überhaupt funktioniert. Diese hier ist auf jeden Fall gleich viel besser.
- Se valoró con 4 de 5por Tyrand, hace un añoIt works as a fully embedded .kdbx manager with cloud storage.
But it doesn't support my OTPs among other things - Se valoró con 5 de 5por Usuario de Firefox 16795405, hace 3 años
- Se valoró con 5 de 5por WildernessFamily, hace 3 añosThank you to the developer. I switched from another Password Manager to AuthPass. AuthPass is compatible with KeePass so this extension works with AuthPass! Thank you for taking the time to create this extensions. It's easy to setup and works! Thank you!
- Se valoró con 3 de 5por Adam Reece, hace 4 añosLooked promising, but found that it doesn't support Argon2 key transformation, so unfortunately useless to me.
- Se valoró con 4 de 5por p, hace 4 añosnot a complete solution because it cannot add new entry to database.
- Se valoró con 3 de 5por Usuario de Firefox 14703913, hace 4 añosIt does its job, but I have had a major issue with logging in to my database often:
I need to disable and reenable OneDrive in the settings to be able to log in sometimes. - Se valoró con 1 de 5por TRR, hace 4 añosI didn't realise when I installed but this hasn't been updated in 3 years. I assume that means it's discontinued but there isn't any indication here or on their website. Not comfortable using abandoned security software.
Respuesta del desarrollador
publicado el hace 2 añosTusk is under active development again! Here's the announcement: https://github.com/subdavis/Tusk/releases/tag/v2024.8.2 - Se valoró con 5 de 5por Usuario de Firefox 17084742, hace 4 años
- Se valoró con 5 de 5por Lucas, hace 5 años
- Se valoró con 1 de 5por Usuario de Firefox 16931407, hace 5 años
- Se valoró con 5 de 5por mao, hace 5 añosil top ottimo autofill, speriamo in una implementazione con il lettore di impronte del mac
- Se valoró con 3 de 5por Hnk, hace 5 añosLooks promising. However, nextcloud/owncloud support implies unsecure save of user/password.
- Se valoró con 5 de 5por PC, hace 5 años
- Se valoró con 5 de 5por Robert Roygaard, hace 5 años
- Se valoró con 3 de 5por Usuario de Firefox 13296071, hace 5 años
- Se valoró con 5 de 5por Lapidary, hace 5 años
- Se valoró con 5 de 5por refo, hace 5 añosThis KeePass extension is perfect for browser, for situation that KeePass was installed portable.
- Se valoró con 4 de 5por Usuario de Firefox 16359954, hace 5 añosworks almost flawless. bit weird that when opening it. a masterpassword is filled in. not my master mind you. but he. if you replace it. it still works fine
- Se valoró con 5 de 5por SPGoding, hace 6 años
- Se valoró con 2 de 5por TigerDave, hace 6 añosJan 2021 Update: Switched to Bitwarden. Works like a charm.
Original review: Was (and still is) working great for my 5 existing PCs, but when I try to install it on any new PCs or VMs, I am unable to connect to and use pCloud.
Error = "Invalid Client ID".
Plus the Add-On now appears to be abandoned. Too bad. It was awesome.Respuesta del desarrollador
publicado el hace 2 añosTusk is under active development again! Here's the announcement: https://github.com/subdavis/Tusk/releases/tag/v2024.8.2
Glad you're enjoying Bitwarden, I use it too! - Se valoró con 1 de 5por Usuario de Firefox 15927421, hace 6 añosThis was working fine and I would give it 4 stars (there's some improvements that are needed), but now it crashes the browser. Plus it's no longer maintained.
Respuesta del desarrollador
publicado el hace 2 añosTusk is under active development again! Here's the announcement: https://github.com/subdavis/Tusk/releases/tag/v2024.8.2 - Se valoró con 5 de 5por Rico Liebscher, hace 6 años
- Se valoró con 5 de 5por Phate01, hace 6 años
- Se valoró con 5 de 5por Usuario de Firefox 13115996, hace 6 años