What is a password manager? Which password manager is the most convenient and reliable - a comparative review. Password managers. Corporate use

Hello, dear readers of the blog site. Not long ago I wrote about my problem with, which got there by stealing passwords from my favorite FTP manager and Filezily.

The program itself is not very bad, but the authorization data entered in it is stored in open form- I don’t want to take it. And in browsers, not everything is so rosy with the storage of data entered into them. In this regard, I became concerned about finding a way to solve the problem safe storage passwords.

Probably many of you already use some kind of password manager. But I just now got around to looking for such software and my choice fell on KeepPass. This program has a built-in generator of complex combinations, stores them in an encrypted database, and also quite conveniently allows them to be inserted into browsers, FTP managers and other software.

In addition, Kipas is free and open source, which allows you to believe in the reliability of storing your confidential data in this program (any person knowledgeable in programming could have brought it to light since 2003, however, since this did not happen, then You can trust this software 100%).

Installing and configuring the KeePass password manager

In the field of data encryption, open source code is more of a plus than a minus (TrueCrypt, which I wrote about in an article about, is proof of this). Of course, this program has a lot of paid and free analogues, which some of you probably use in your daily practice, but based on a combination of factors, I liked KeePass the most at the moment.

Among other things, third-party developers produce plugins for it, which, for example, can integrate this manager with popular browsers to improve reliability and convenience of storing passwords in them. Although, Kipas already has a tool called AutoType by default.

Those. you simply place the cursor in the first line of the authorization form on a website or any program, and then press the key combination Ctrl+Alt+A, and if for this page or software you bothered to create a profile in KeePass, then the form will be safely filled in with a login and password, and the entered data will not remain in any other places accessible to malware.

Of course, no one guarantees absolute reliability, but by setting up this password manager you can reduce the risk of interception and theft of important data to a minimum. For example, the copied data lives on the clipboard for the number of seconds you specify; the program can close access to its database (enable blocking) after a certain time and after certain actions.

In general, let's talk about the advantages and disadvantages of this generator and storage of important data as we go. Download KeePass can be completely free on this page, but you will immediately have to choose between the simplified version 1..., which does not require Microsoft.NET (or Mono in free software) to work, and version 2..., which requires this framework, but its functionality is much wider, and it can work not only under Windows, but also under Linux, Mac OS X, BSD and other Linux-like systems. See more details.

By the way, the full name of this password keeper sounds like KeePass Password Safe and in addition to the division into versions described just above, there is also a division according to the type of installation of the program: regular and portable ( Portable Kipas).

The second option, in my opinion, is preferable, because it has no disadvantages over full version, does not leave any traces of itself in the operating system and can easily live on a flash drive (it would be advisable to duplicate it periodically to avoid losing everything at once).

Actually, I use the portable version. For Russification or Ukrainization of the interface for this password generator, it will be enough to download the translation file for the version you are using from this page and copy it to the folder with the program (in case Portable versions). Then go into it and go from top menu along the path: “View” - “Change Language”. In the window that opens, select your language, Kipas will reboot and desired language will be applied to the interface.

Where to start? WITH creation new base . They can be created unlimited amount, for example, when several people work on a computer and each will have their own individual set complex passwords generated in KeePass, to which another user will not gain access. In most cases, you can get by with just one database, since remembering several master keys from them will be difficult.

To do this, click on the empty piece of paper on the toolbar of this manager (or select from the “File” - “New” menu):

If you have a portable version, then it makes sense to save the database in the folder with the program (on a flash drive). If the version of the manager is complete or you copied Portable to drive C, then under no circumstances throw the file with the database there, because if it malfunctions or is restored from the image, it may end up in storage along with all the invaluable passwords.

It can be placed, for example, in so that you always have the opportunity to pull a copy from the internet. There is no need to worry about its safety, because the data in it is encrypted in a very reliable way.

In the next step, you will be asked how secure access to stored passwords should be. This will be expressed in how many authorization steps you select in the composite key window to access the database:

Access to the encrypted database in Kipas You can close it with as many as three barriers:

Master key to enter the manager (you will have to remember or write it down, because without it...)
Key file - choose, for example, on your computer, and better than a flash drive, some inconspicuous file (best among a bunch of similar ones) and say that it will now be the key one. It can also be created specially. But be sure to copy it to a few more places (another flash drive, HDD(but not in C) or in a cloud storage on something like Yandex Disk or Dropbox, because if it is lost...)

You can even link this program for storing passwords to your Windows account, although if you use the portable version of KeePass on a flash drive, this will be superfluous, because you will not open this password manager on another computer (you will not get access to the encrypted database). If you plan to work from only one computer, then linking to an account will further increase the security of your databases.

But remember that adding any new device will change this same account and problems will arise. At least that's what happened to me after the replacement. motherboard. Therefore, be careful with this option.

Next you will be asked to change some settings of the created database. You can, for example, increase the strength of the encryption method used by increasing the number of cycles (passes), but this will slightly (not significantly) slow down its opening and saving data into it:

It will be possible to enable or disable databases to reduce the size they occupy, and also decide whether or not to use the “Trash” built into this manager, where deleted profiles will fall.

On the “Advanced” tab, you can ask the program to remind you about the need to change the master key after a certain number of days (if paranoia has set in and you have started setting up a password manager, then periodically changing the key will not seem superfluous).

At the end of this process, you will be taken to a tab with your newly created database for passwords and logins (they are located on horizontal stripe tabs), where you will find folders and example profiles carefully created for you by the KeePass keeper:

You are free to remove all this demo wealth so that clean slate build your well-designed hierarchical tree in this generator and saver. Well, I’ve told you the most difficult part, and then you’re on your own... Of course, I’m joking, because there’s still a lot of text left at the bottom. I’ll try to tell you in detail about what I managed to figure out.

Password generator and keeper with easy password insertion

My main task was to customize the most safe work with FTP manager FileZilla, as well as convenient and secure storage of passwords from money programs (for example) and money sites (or no less popular or). Well, there are also a lot of sites whose passwords should not be known to attackers.

There is also the problem of hacking mail, where letters with passwords and logins for all this wealth are often stored, but, firstly, I focus everything more or less important on my , because it is linked to my computer and using SMS sent to my cell phone . Secondly, I periodically delete all mail from there to avoid...

Let me make a reservation right away - why start this whole circus of creating complex passwords and storing them in encrypted form. After all, there are password managers in the same FTP clients, and browsers are not offended by such tools. Waste of time? Not at all. Do you have Filezilla on your computer? Now follow this path:

C:\Users\[account name]\AppData\Roaming\FileZilla\sitemanager.xml

Or this in the case of old XP:

C:\Documents and Settings\[account name]\Application Data\FileZilla\sitemanager.xml

This file can be opened, for example, in my favorite . So what do we have? And we have a full set of passwords saved in this program, which Absolutely no protection from theft, because the file is not encrypted, and its location is the same for 99.99% of computers.

And a little earlier I scolded my beloved for this. Take it - I don’t want it.

Do you think things are better with browsers? Well, maybe a little, but if you type in the search queries “how to find out the password in Opera”, you will probably get an answer that they are stored in the file wand.dat, which is not difficult to find in the directory c:\Users\account name\AppData\Roaming\Opera\ .

Well, the freely distributed Unwand program will help you open its contents. As a result, you will receive a list that you can copy into NotePad++, and use the built-in search to find all the passwords you are interested in.

I myself have used this opportunity more than once to search for a password and login that was not written down anywhere, but remembered. I can’t speak for other browsers (it’s possible that passwords are encrypted somewhere and this is done securely), but most likely the situation is not very optimistic. Therefore, I decided to remove all important profiles from the managers built into browsers, first transferring them to KeePass.

In general, something similar to convenient and secure storage and generation of passwords I managed to organize it. I couldn’t figure out some things, but here I am hoping for you - maybe someone knows English well and understands the essence that I didn’t understand.

So, first you need to think about the structure of the hierarchical tree in Kipas. New subfolders are created using the context menu of the parent folder:

Although, you can then use the mouse to drag folders inside other directories as you please. After creating the structure, you can start creating profiles in this manager. There is a special shortcut for this on the KeePass toolbar.

Go to the desired folder in the left panel, and then click on this shortcut with the key, or in the right panel from the context menu, select “Add entry”:

A window will open with a number of bookmarks. The main fields to fill out are on the first tab:

In most cases, the “Name” field needs to be filled in with the exact name of this password profile, but sometimes not (more on that later). In the “Name” field, enter your login, and in the next two fields, enter your password. If you are filling out a profile in Kipas for already existing account, That password generator you won’t need it, but if you simultaneously register on any website or program, then you will simply have to create a complex and hack-resistant code.

For this purpose, Kipas uses a tool for auto-generating passwords for a new account (its complexity can be assessed in the “Quality” line), which can be configured using a button with a key and a gear called “Password Generation,” which you will find at the end of the “Repeat” line.

Same tool to create passwords of any complexity will also be available to you from the top menu of the manager: “Service” - “Generator”:

As you can see from the screenshot taken, you are free to set the length of the generated password in characters, as well as very finely tune which of the possible characters will participate in the generation. You can see approximate versions of the created codes on the “View” tab.

The tool is quite powerful and Passwords can be created extremely complex, but you still won’t need to remember them, and you won’t even have to type them on the keyboard - the smart KeePass manager will do everything for you, and thank you.

To ensure that all the settings you make here are always applied to the automatically generated passwords of the new profile, just click on the blue floppy disk at the end of the “Profile” line and select the option to save “Automatically generated passwords for new entries”.

Close the generator settings window and fill in the remaining fields "Link" and "Comments". For sites, filling them out will be prosaic, but for programs, for convenience, you will need to insert the path to the executable file of this software into the “Link” field (for example, cmd://"C:\Program Files\FileZilla FTP Client\filezilla.exe" ), and in the comments there is information about her (see the example with Filezila just below the text). All? Ah, no.

The most interesting thing about the Kipas manager is that passwords entered into it can be automatically inserted using the hotkeys Ctrl+Alt+A already mentioned just above (well, or what is more difficult - Ctrl+U and Ctrl+V). However, for all this splendor to work, you will now need to spend a little time setting up, so immediately in the new task window go to the tab "Auto dial":

What kind of animal? This thing allows you to explain to the program where exactly to insert the login and password on the required website page or program window. Imagine you place your mouse cursor in the initial field of the authorization form, which in most cases will consist of two fields for entering a login and a password, respectively. Then press Ctrl+Alt+A and these fields will be automatically filled in by KeePass. But in fact it obeys the rule:

(USERNAME)(TAB)(PASSWORD)(ENTER)

This means the following. The contents of the “Name” line are entered into the first field, then pressing the “Tab” key on the keyboard is simulated, which provokes a transition to next field authorization forms where the password is inserted, and then pressing Enter on the keyboard is simulated. As a result, you safely enter the site or program. Shaitanama.

This is a standard combination that will work on most sites, but not all. I once wrote where I mentioned the popular Direct/Advert service. The teaser is wonderful, but now we’re not talking about that, but about some non-standard form of entry to this site:

How is she unusual? This is shown with an arrow in the screenshot. When using a standard combination, only the login will be entered, because the second field is a link to a request for a new password. Login to the site will not take place, but your Mailbox You will receive an email asking you to change your password. What to do?

Create your profile in Kipas for this site by checking the box in the previous screenshot in the “Use” field the following sequence"and change it a little:

(USERNAME)(TAB)(TAB)(PASSWORD)(ENTER)

After pressing the AutoDial keys (Ctrl+Alt+A) nothing may happen, because KeePass manager will not find a match between the page opened in your browser and the profile that was created for it. What to do? Teach him, of course.

To do this, we look again at the previous screenshot and see a button there "Add" in the middle of the autodial settings window. You will click on it a little later, but first open in your browser the page where the login form is located or open the application (for example, filezilla) that will be the receiver of the auto-dial fields. Have you opened it?

Well, now go to Kipas and click on “Add”:

From the “Target window” drop-down list, select the application you need (for example, the Opera browser with the authorization page on the Direct/Adverta website open in it), and then click on OK.

By the way, in the same window you can use a more expanded set of operants for more fine tuning behavior of the KeePass autodialer bot in the specified program, but this is for inquisitive minds (there is a link to help on Auto-Type, but it is in English).

Now, on the autodialer settings tab in the password manager, a corresponding line will appear that will rigidly link the site page with the authorization form (or application) to the password profile you created in Kipas:

All. Click OK. Go to the website page with the authorization form, place the cursor in the first field and use the treasured three-finger combination(Ctrl+Alt+A). Happened? So that's great. I'm very happy for you.

How to Use KeePass with Filezilla

Great, but now let's get back to where I started all this - possibility of safe and comfortable work with sites via FTP through . As we saw just above, the password manager built into it is no good in terms of security.

Therefore, we open the Kipas program, create an FTP folder in its left column and create the first profile for logging into one of our sites using the FTP protocol.

There are several nuances in filling it out. In the first field we enter the address FTP servers your hoster, then enter the login and password issued to you to access the site via file protocol, but in the “Link” field we insert a command to open Filezilla, which is quite convenient.

For regular Windows it will be:

Cmd://"C:\Program Files\FileZilla FTP Client\filezilla.exe"

And for 64-bit:

Cmd://"C:\Program Files (x86)\FileZilla FTP Client\filezilla.exe"

It would be best to write the name of this connection in the comments field, because FTP address server may be uninformative. Next, open the file and, without entering any passwords into it, go to the “Auto-dialer” tab of the KeePass program to link this profile to our FTP manager:

As was shown just above in the text, click the “Add” button, select FileZilla’s “Target window” from the drop-down list (it should be open at this moment and there should be nothing in the authorization fields), and then click OK.

The checkbox in the screenshot is in the “Inherit autodial from group” field, because I registered the necessary operants for the entire group (FTP folders) by selecting the “Change group” item from its context menu and going to the “Auto dial” tab:

You are free to change the checkbox in the “Use the following sequence” field and for each FTP connection enter a set of operants in the field located just below:

(TITLE)(TAB)(USERNAME)(TAB)(PASSWORD)(ENTER)

This doesn't change the essence. Now, to check, open FileZilla, place the cursor in the first line of the authorization field and press the three magic keys (Ctrl+Alt+A):

If you use the algorithm described just above to create several password profiles for different FTP connections, then when you press the magic keys you will be asked where you still want to log in (the same will be true for sites where you have several accounts):

Can use a different login algorithm. Open your program for storing passwords (kipas), go to the FTP folder, click once on the line with the desired FTP account and click Ctrl+U on keyboard.

The focus is transferred to the Filezilla program that opens (that’s why the link cmd://"C:\Program Files\FileZilla FTP Client\filezilla.exe" was added), but without going anywhere else you return to KeePass and press the key combination Ctrl+V. As a result, the authorization fields in FileZilla will be filled in automatically and you will have access to your site. Which method of automatically entering a password is more convenient is up to you to decide.

And finally, you can simply copy your login and password to the clipboard, double-clicking on them in turn in the Kipas window (name and password in the columns). Double-clicking on the title of an entry will open a window for editing it, and double-clicking in the “Link” column will activate the transition to it.

Password retention period on the clipboard is set in the settings (Tools - Settings - Security - Automatic buffer clearing) and by default is 12 seconds.

So, and a couple more steps that will allow remove all traces of passwords entered into FileZilla from KeePass. The fact is that this FTP manager stores the history of entered passwords for some time and a certain number. To eliminate this incident, you will have to do a number of simple manipulations.

First, delete the sitemanager.xml already mentioned above (see its storage folder above). Secondly, you will need to slightly change the program settings.

To do this, find the file fzdefaults.xml.example in the c:\Program Files (x86)\FileZilla FTP Client\docs\ directory and rename it, removing the ending in fzdefaults.xml . Transfer this file to the folder with FileZilla (c:\Program Files (x86)\FileZilla FTP Client) and, opening it for editing in Notepad++, delete all its contents, replacing it with this:

Save the changes, then go to the folder C:\Users\[account name]\AppData\Roaming\FileZilla\ and delete the recentservers.xml and filezilla.xml files there. That’s it, your FileZilla will now not tell anyone what passwords were entered into it automatically from the KeePass manager. This is what needed to be implemented.

More about KeePass

During its long existence this program has acquired a wealth of functionality that you could write a small book about. There are many possibilities, but not all of them are obvious. In addition to the built-in functionality, there is expandable by installing plugins, which can be downloaded from the official page.

Plugins are installed by simply copying them to the program directory and then restarting it. The mentioned Favicon Downloader adds to context menu the “Download Favicon” item, clicking on which will download favicons from the Internet for those sites whose passwords you store in this program. As a result, the visibility of working with it greatly increases.

There is also a whole galaxy of plugins that work in tandem with the corresponding extensions in the browser, allowing, as I understand it, to raise the level of interaction between these programs to a qualitatively higher level. However, in practice I still don’t understand why this is all needed. If anyone is in the know, please describe the advantages and principles of using these extensions in browsers. Thank you.

Yes, there are still plenty programs for mobile phones and tablets, who can use the KeePass password database, which you shared via DropBox or Google Drive. For my beloved iPad, this program is called KyPass.

In Kipas settings you can activate it to launch along with the start of Windows. To do this, from the top menu you need to select “Service” - “Settings” and go to the “Integration” tab:

There you can also change the keyboard shortcuts for autodialing and calling the manager window. On the tab "Additionally" you can make dozens more settings, including checking the “Run in minimized and locked state” box, which can be useful:

In addition, KeePass has the ability to create your own filters for events and assign actions to them. This is done in the menu “Tools” - “Triggers” (?). If you have ever set up filters in mail program, then you can easily figure out what’s what. However, I will give an example. Let's say that we want to automatically save newly entered or changed passwords into the database.

To do this, select “Tools” - “Triggers” from the top menu of the program, and in the window that opens, click on the “Add” button:

Now you will need to give the rule a name and then go through the Events, Conditions and Actions tabs one by one. On each of these tabs, click on the “Add” button and select the following options from the drop-down list (then click on OK), if you want, so that the database is saved automatically.

For Events, the user interface state has been updated, for Conditions, the Current database contains unsaved changes, and for Actions, Save the current password database. Now save all this by clicking on the “Done” button and enjoy the result. For this, allow me to take my leave.

Good luck to you! Before see you soon on the pages of the blog site

You can watch more videos by going to

");">

⇡ LastPass

One of the most famous password managers is LastPass, the brainchild of the American company LastPass Corporate. Among the advantages of the program, they usually note its simple interface, multi-platform, reliable encryption of passwords, which occurs on your device, and only then the data is transferred in encrypted form to the company’s servers.

The application works on both Windows and Linux, Mac, as well as mobile devices ah and tablets running iOS and Android, on smartphones running Windows Phone, BlackBerry and even FireFox Mobile. In addition to the “home” version, there is also a corporate version, which has the function of integrating with a local domain controller and setting up access policies. It also stores data about all employee accounts in corporate internet services. For example, using LastPass, it is possible to configure access for an organization's employees to Office 365, Google Apps for Work, and other online business services that the company uses.

To get started with LastPass, you need to download a special program and register in the system. Download installation file, run it, after which the installation window will open. Select the "Advanced Options" option to set the program's preferences - in particular, you can set the application location directory, specify which browsers LastPass extensions will be installed for, and also set Extra options privacy.

After installation, the application prompts you to log into an existing account or create a new one. When registering for the service, you must provide your valid email address and set a master password. According to the developers, you need a master password Very good remember and enter very carefully. If you forget it, then best case scenario receive a reminder phrase. The service administration cannot read the administration password itself, which is what they warn us about. The master password requirements are as follows: a minimum of eight characters, and it is also recommended to use a combination of upper and lower case letters and numbers.

After registration, the program will find passwords in browser storage and offer to import them. Review the list and click the Import button if you want to import account data. Optionally, you can refuse this by clicking the “No, thanks” button. It should be noted that upon import, passwords are removed from the browser storage, and now authorization in services will take place through LastPass services.

Now launch the browser you usually use and install the add-on. Then we go through authorization - to do this, click on the program icon, and in the window that opens, enter the email address with which you registered, and the same master password - the only password you will now need to remember.

The “Storage” section contains all the data about your accounts, sorted into folder categories for convenience. Clicking on a folder will open a list of passwords contained in it. Each password can be viewed by selecting the appropriate option next to it.

In the window for changing account information, you can change the password, the account folder, add notes, and also configure additional settings - for example, you can enable automatic login when logging in to the site.

Another interesting feature of the application that I would like to draw your attention to lies in the “Form Filling Profiles” section.

Profile: enter personal information

Here you can create and fill out a user profile, indicating information about yourself - last name, first name, patronymic, home address, number mobile phone, credit card information and more. Now, when registering on sites, you will not need to enter all this many times: you just need to select the appropriate profile - and all the data will be filled in automatically.

Automatic completion when registering on mail.ru

When creating a password, you can use a generator that will offer a combination of letters, numbers and symbols that is difficult to crack and select - something like sZoxpYi1DZY9, as shown in the figure below. Using the settings, you can set the length of the password and what characters you want to use in it.

The premium version, as mentioned above, has support for syncing passwords with mobile devices. After installing the application, you need to log into LastPass using your account, after which information about all your accounts saved in the system will be downloaded to your mobile device.

It is also possible to view information about each account, edit it, or go to the site for which this account was created and log in.

Overall, LastPass makes a very good impression - it is a convenient and functional program that has many useful features. The only minor disadvantages include the lack of the ability to synchronize accounts with tablets and mobile devices in the free version - but the developer must somehow monetize his service.

⇡ StickyPassword

The next program I would like to talk about is Sticky Password from the Czech company Lamantine Software. The application is available on several platforms and can also sync your accounts with different devices. According to the developers, Sticky Password can store all your passwords in an encrypted vault, as well as automatically fill out forms and credit card numbers for quick use. Your information is protected by a traditional master password, which you need to remember. As with LastPass, the creators of the system report that they do not know our master password, so you need to memorize it well and not forget it. Among the more interesting features in the program is support for AES-256 encryption, biometric authentication and the ability to synchronize the passwords of your devices via Wi-Fi. The authors also promise correct operation applications in the four most popular operating systems and sixteen browsers, including Google Chrome, Mozilla Firefox, Safari and Internet Explorer.

Sticky Password is distributed by subscription. When you first install the program, you will be prompted to create an account, after which you will receive 30 trial days premium After one month, your Sticky Password account automatically becomes free. Traditionally, premium users have a number of advantages over regular ones. For example, only paid users have access to the ability to synchronize (both via Wi-Fi and through the company’s cloud services), as well as save backup copies password storage in the cloud. This is convenient if, for example, you reinstalled the operating system or purchased a new device - you can still quickly recover all passwords in the system. The price of a premium account per user is 1,190 rubles for one year; for a perpetual premium license you will have to fork out 5,990 rubles

Installing Sticky Password is not particularly difficult - you just need to download the program from the official website and run the installation file as usual. After installation, the application must be configured.

The next step will ask you to sign in to your account or create a new one, which will require your email address and master password. In general, everything is standard here too.

In the next window, we confirm the master password and check the box that this same master password is not saved anywhere and only the user knows it. Next, the program will offer to synchronize data through Sticky Password cloud services. If you have several devices, select the option with synchronization.

Then you need to select the browsers in which you want to use Sticky Password, after which the program is ready to work.

After receiving passwords from the browser storage, the program will remind you of 30 days of free premium subscription, and then, by clicking the “Start” button, you can read a short instruction on how to use the program and finally launch working window applications.

The “Internet Accounts” section contains a list of user accounts found on the computer. Each entry can be edited or deleted, or a new one can be added. It is proposed to group entries into folders. Of course, you can create new folders and copy account data into them.

Internet Accounts Section

One more remarkable feature The program is able to save passwords not only for sites, but also for applications. It is possible to select a program and set a username and password to enter it. If the program is not visible in Sticky Password, you must select it through the overview menu.

Like LastPass, the application has the ability to add personal data to fill out forms - this part should be found in the “Business Cards” section. Click the “Add business card” button - and in the window that opens you will need to fill out information about yourself. In the future, it can be used to fill out profiles when registering on various resources.

Section "Business cards"

Adding information about yourself

An extension appears in browsers with Sticky Password installed. Using it, you can quickly go through the authorization process on sites whose accounts are located in your password storage. To do this, open the “Internet Accounts” options menu, and then select the desired site. After this, the browser will open the selected resource and add the necessary login information.

⇡ Kaspersky Password Manager

Kaspersky Password Manager is a joint project of Kaspersky Lab and Lamantine Software. Password Manager is based on Sticky Password, so the programs are very similar in... well, everything. The application is shareware. The free version can only store up to fifteen accounts, for storage more accounts must purchase a paid version. It is worth noting here that the program is not sold separately; it can only be purchased as part of Kaspersky Total Security or Kaspersky Small Office Security.

However, although Password Manager is included with these applications, it can also be downloaded separately from the Kaspersky Lab website. Installing the program is generally the same as the previous ones: run the executable file and follow the instructions of the installation wizard. Unlike Sticky Password, here accounts are synchronized with Kaspersky Lab servers, and to enable synchronization you must specify either a My Kaspersky account in case home use as part of Kaspersky Total Security, or your company’s account on a special Kaspersky Lab portal for organizations.

In general, in terms of its feature set, Password Manager is almost identical to Sticky Password, so we will not consider it in detail. Once installed, the program also adds extensions for your browsers. With these extensions, you can quickly log in to the sites where you are registered and add your data for quick registration so as not to enter it every time.

⇡ Dashlane

Another password manager that I would also like to pay attention to is Dashlane. On the one hand, it cannot be said that it has any unique functions that were not discussed in the previous sections of the review. On the other hand, it is quite convenient and easy to learn. In addition to the “home” version, there is also a corporate version, designed for work in an organization. Traditionally, users are offered two account options - regular (free) and premium. The free version has a number of limitations - the user will not be able to synchronize account data between devices and backup data to a cloud service.

To start using the program, go to its official website and download the application. Installing Dashlane is quite simple - run the executable file and after installation you will see a welcome window. Select the option to create an account and enter the required data.

When creating an account, we will, of course, be asked to create a master password. The program will remind you that only you know it and you need to remember the password very well. After all the preparatory steps, the Dashline working window will open.

The password storage is located in the Passwords section. As in other programs, passwords can be organized by creating category folders for subsequent sorting of accounts. Accounts can be added to the system in two ways: through the program and in the browser, if you enter data for a record that is not yet known to the system.

Right-clicking on an account icon brings up a context menu with which you can perform actions on it - change the password, delete, change the category and give access to another user. In the Security Dashboard section, the program sets overall rating account security and offers to change passwords for accounts that, according to the analysis, are too simple and can be hacked by attackers.

In the Secure Notes section, secure notes are added, which, as in similar programs, will be located in a special section of the storage.

The Payments section contains information about your credit card or bank account, and you can also view your purchase history. The Team section contains options that let you share data with other users, such as family or colleagues. If you leave any personal data on the sites, you should pay attention to the IDs section, where you enter the data of your passport, driver's license and other personal documents in order to use them if necessary.

Similar to other applications, Dashlane installs extensions for browsers, with which you can log in to sites and add new accounts to the system. The plugin recognizes when you enter your credentials and prompts you to add account information to the program.

The advantages of Dashline include a user-friendly interface, ease of use and the ability of the system to analyze your passwords and recommend replacing them with the most reliable ones. But there are also disadvantages - there is no support for the Russian language, and most important functions Available only in premium; the free version does not even have the ability to synchronize passwords between devices.

⇡ 1 Password

Well, our review ends with 1Password. The application differs from all those listed in advanced encryption algorithms, the absence of its own cloud service and licensing. 1Password is distributed using a shareware model - there is no subscription option. After installation, you can use the application for free for thirty days, after which you need to purchase a license once.

We will look at the Windows version of the program as part of this review. The program installer can be downloaded from the official website. After installation the wizard will start initial setup. Select the option I am new to 1Password, a window for saving your password storage will open. We select the save folder - by the way, this can be not only a folder on the local hard drive, but also a network directory, or, for example, a folder in a network file storage service (for example, DropBox, OneDrive and other similar services). The program also has the ability to synchronize data via Wi-Fi - convenient if you have several devices between which you need to synchronize account data. To synchronize, the system generates a special password that must be entered on other devices.

1Password makes a very good impression. The advantages of the application, undoubtedly, include a simple and intuitive interface, reliable data encryption, a relatively low price and the ability to store a password file not in a cloud service imposed by the developer company, but in any storage of your choice. If DropBox, OneDrive and other similar services are in doubt, then the data can be placed, for example, on a corporate or home server V local network by opening the folder with the password file for specific user(or users). The master password should be remembered very well - the data is stored only by you, which means it will be impossible to recover it. In general, 1Password can be recommended to those users who do not trust cloud services and who prefer not to pay for a subscription, but to purchase a one-time license.

⇡ conclusions

The table shows comparative characteristics password managers discussed in the article. In general, they are similar, but it is the differences in functionality listed below that will allow everyone to make their own choice.

To determine the best password manager, we will traditionally rely on the opinions of users of the Android application store and Google Play. This is the simplest and most objective criterion. As Gagarin said, let's go!

Important! We only took free applications.

1. KeePassDroid – 4.6

Traditionally for this kind applications here you can create groups, add your own notes, even add password files and the like.

It is important that there is a function for generating complex passwords. Thanks to KeePassDroid you won't need to invent strong password– just generate it in the program. If you wish, you can change a couple of characters to make it even more reliable.

There is also a function for filling out login and password fields on certain sites and programs. Overall, a very high-quality application!

2. LastPass Password Manager – 4.6

Another very secure storage that can generate passwords.

LastPass Password Manager's interface is simpler and friendlier than KeePassDroid's. There are also several unique features, such as your own browser.

Using the program is very simple - first the user enters one password for the application, and it, in turn, puts them wherever it can according to the data entered by the user. The storage can contain not just passwords, but full-fledged accounts.

3. Enpass password manager – 4.6

Enpass password manager is a whole small ecosystem. There are programs for Mac, Windows and Linux. The same thing applies to all of them. Account, which is very convenient.

There are no monetary fees, but there is automatic filling of password fields in browsers and other applications.

It is important that it supports working with fingerprints. This is the most reliable way protect yourself from unauthorized access.

It is also possible Reserve copy all the information that is in Enpass password manager. Great program!

4. PasswordSafe and manager – 4.6

The main feature of this password storage is the use of Advanced Encryption (AES) 256bit encoding. This ensures a high degree of reliability in storing all your information.

It is important that PasswordSafe does not provide Internet access at all. Accordingly, you can (theoretically) only hack it from your smartphone or tablet. Get unauthorized access remotely impossible. And the use of the application is traditional - one password for the program, and it itself will enter all other logins and passwords.

Rice. No. 4. PasswordSafe and manager

5. Dashlane Password Manager – 4.6

We can say about this application that it is very fast. If when using other managers, logging into accounts may be slightly slower due to the program’s operation, here everything happens much faster.

Available separate service For electronic payments, which is very important, because transferring money on the Internet has become an integral part of our daily life.

There is also a password generation function. True, there is a significant drawback for many - Dashlane Password Manager is not translated into Russian. There are only English, Spanish and French versions. However, the interface is quite simple and anyone can easily understand it.

6. Bitwarden - Password Manager – 4.7

A very beautiful and multifunctional application that allows you to conveniently store all passwords in one place. It has a separate extension that integrates into Chrome and other programs.

To encrypt user data, the AES-256 and PBKDF2 SHA-256 algorithms are used here. Today they are considered more than reliable. Moreover, Bitwarden is open source. However, no one can hack it to gain access to users' information.

Bitwarden is considered one of the most reliable applications in this category.

Rice. No. 6. Bitwarden - Password Manager

7. Password manager - SmartWho Keeper – 4.7

Another really beautiful one multifunctional program, which makes it possible to store all passwords in one place and configure their automatic entry into the appropriate fields.

One is also used general password for a program that you still need to remember and not lose.

SmartWho Keeper uses AES 256 encryption. It is noteworthy that there are separate categories and, accordingly, storage features certain types data such as passport, files, banking information, insurance number and so on. There are separate templates for all this.

Rice. No. 7. Password manager - SmartWho Keeper

8. Keepass2Android – 4.7

Very popular program, perhaps the most popular in this TOP. But its rating does not allow us to put Keepass2Android in the first position of the rating.

U this application It even has its own file format - kdbx. The user can write all his data into such files, and then store them in some separate place or on storage media (flash drive, disk, cloud, and so on).

With kdbx you can import and export data from one device to another. Keepass2Android has access to cloud storage.

There is also Keepass2Android Offline, which works without an Internet connection. If this option suits you better, and it is, of course, more reliable, use it.

9. Password Saver - Store passwords simply and securely – 4.7

This is a more "toy" application. Of course, it performs all the stated functions and is extremely easy to use, but its interface looks somewhat cartoonish, childish. It seems that the development was carried out by novice developers who did not involve designers in the work. But this is a subjective opinion. In any case, all passwords are stored in a very secure place.

How to store passwords for countless services without going crazy?

Once you have proven to your mother that using the same password when registering on different sites is not secure, the question arises, where to store all the login passwords? And this is where password managers come to the rescue. This special programs for secure storage of passwords and access codes. We propose to consider the rating of password managers, their disadvantages and advantages.

LastPass

LastPass can be used to store credit card numbers, bank accounts, and passwords. Additionally, access to information is possible for persons who have permission to do so. The ability to control passwords of employees of organizations or members of the same family has been implemented. Software and hardware supported multi-factor authentication. Convenient control password database via the web interface on the LastPass website. Encryption uses the AES-256 algorithm.

The program provides simple and convenient cross-platform access to passwords from any browser. The application really works everywhere: Windows, Linux, Mac, a mobile version has been developed for Android, iOS, Windows Phone, Blackberry.

pros

Security check to find the most secure passwords
Search for unprotected objects on a PC
Automatic synchronization

Minuses

Partially Russified interface
Mobile applications are implemented only on on a paid basis
In general, the program is free, but you have to pay for additional features

Price

free version on one device
from $2 per user per month allows you to synchronize work with all gadgets

Kaspersky Password Manager

A password manager capable of storing a variety of personal and digital information. In addition to passwords, it saves passport data, account information and bank cards. Supports various platforms: Windows, Mac OS, Android and iOS, all data is synchronized.

Intended for individual use. Imports all passwords previously saved in browsers. The program has a convenient search system.

pros

Automatic password strength check
Password generator
Autofill and autologin

Minuses

No corporate offers
No import from other password managers
No two-factor authentication

Price

free test mode on one device with the ability to store up to 15 passwords
from $14.99 per year, unlimited number of devices

Dashlane Password Manager

One of the leaders in password managers monitors and changes passwords in one click. After installation, the program finds security weaknesses and prompts you to change passwords from time to time for better data security. When hacked sites are detected, it warns the user about the need to change the password. The password change procedure itself takes just a couple of clicks. The program stores credit card numbers, bank accounts, and even purchase receipts from online stores, and details expenses.

The program has an emergency communication function. Performs two-factor authentication. Allows you to change passwords on 160 of the most popular network resources (Facebook, Twitter, Amazon, Lindekln, etc.). It is possible to share your password with another user.

pros

Ease of changing passwords
Security Risk Notice

Minuses

Inability to use the program for products Apple
Lack of Russian language in the interface
Automatic replacement of some entered characters in passwords

Price

free plan for one device (includes 30 days of premium plan)
from $3.33 per month for one user for all devices

1Password

A convenient manager for working with passwords. Supported by various shells: iOS, Mac, Windows, Android. The system is supported by all major browsers. The form is automatically filled out. Synchronizes via wifi, icloud or even dropbox. The system monitors hacking attempts, tracks and reports the need to update the password.

You can divide passwords into categories. Implemented the ability to share a folder with passwords for a third party without worrying that outsider will see all other passwords. The program has mobile version. Encryption is carried out using the AES-256 algorithm. Passwords are not stored in cloud space, but on the media. The clipboard is cleared at certain intervals.

pros

Simplicity and convenience of the interface
No cloud storage
Complex password generator
Cross-platform

Minuses

High price
Lack of Russian-language interface

Price

30 days free use, and then - payment
from $2.99 per month per user

RoboForm

One of the oldest password managers. It differs from the others in that it allows users to log in to several sites at the same time. Supported by all browsers.

Data storage is possible in the cloud or locally on one PC. In the second case, the ability to access the password manager from mobile devices or other computers disappears. The database is encrypted using the AES-256 standard. When using cloud technology, synchronization with other devices is possible. Each entry has additional protection. A master password is required to retrieve all data. Portable version programs can be stored on a flash drive.

pros

Password generator
Availability of backups
Filling long forms in one click

Minuses

No free version
The presence of many small bugs

Price

free plan
from 895 rubles per month for one user
There are discounts if you pay for several months
There are family and business rates

KeepPass

One of the first free managers passwords. It is open source. Compatible with almost all browsers and operating systems. Perfect for individual use. Encryption using AES-256 algorithm. Used to store and generate passwords. Has a number ready-made plugins: for encryption, synchronization, generation of easy-to-remember passwords.

Multi-pass key conversion is used. This is a reliable resource for storing passwords. Syncs using Dropbox. All records are copied, distributed into categories, and searches by records are possible.

pros

Reliability
Automatic input data
Lock button

Minuses

Outdated and complex interface
Lack of versatility

Price

KeePass is a free program

When choosing the best password manager, you can rely on the opinions of other people, or you can try everything yourself. Everyone decides this issue for themselves. The main thing is not to forget about the protection of information and personal data. You can find a list of other password managers.

Most popular answers. CPU publishes a selection of the most reliable and convenient services.

As Lifehacker.com notes, previously password managers could only store information in encrypted form. Today, such programs provide the opportunity to store data both on a computer and remotely, change the password with one click and access websites using it.

Best programs of this type can be launched on a computer without an Internet connection, and synchronized with many devices over the network, writes Lifehacker.com.

Some of the managers authorize the user on the sites, others keep track of passwords and check whether the same combination is used in several cases. They all have their own characteristics and approach the issue of secure data storage in their own way.

LastPass

Lifehacker.com notes that LastPass was one of the first password managers that was convenient to use for storing passwords both online and locally.

LastPass remembers user passwords and allows you to manage them, and also automatically changes them if the service for which they were intended was hacked or otherwise compromised. LastPass supports two-factor authentication for password storage using Google Authenticator, a USB device, or a YubiKey.

The service was updated in 2014 user interface, making it much more convenient to use, and a number of additional functions, such as monitoring changes in credit history, generating secure password and storage and exchange of documents, notifications when one of the sites used is hacked, tools for auto-filling forms and online purchases.

LastPass supports Windows, OS X, Linux, Android, iOS, Windows Phone and Blackberry, as well as plugins for Chrome browsers, Firefox, Safari, Opera and Internet Explorer. Basic version the service is free, and a premium manager with maximum functions and support mobile platforms available for $12 per year.

As noted by Lifehacker.com, many users said that LastPass made their online life much easier. Thanks to the service, there is no need to use the same password on every site, you do not have to make mistakes in typing or accidentally send combinations to someone. The manager allows you to block important data when you think you have been hacked, and motivates you to take better care of security.

Dashlane

Dashlane was launched in 2012 and quickly gained popularity due to its attention to the interface, security, ease of authorization, automatic filling forms on web pages and working with online stores.

During the existence of the manager, it has gone through several updates, acquired support for two-factor authentication, the ability to share passwords in case the user has lost access to their accounts and, most importantly, a function through which you can change several passwords for a dozen sites with just a few clicks. Dashlane also notifies the user if one of the resources they use has been hacked, and can independently set new unique passwords.

Tracking purchases and working with a virtual wallet simplifies work with online retailers and allows you to track all orders within the service. In addition, Dashlane provides the ability to store passwords locally in encrypted form, and also allows you to synchronize them with other devices via cloud storage.

Dashlane runs on Windows, OS X, Android and iOS and has plugins for Chrome, Firefox, Safari and Internet Explorer. Paid version manager allows you to configure the synchronization of different devices. Its cost is $40 per year.

KeepPass

According to Lifehacker.com, KeePass is suitable for all fans free software with open source software. In this program, all user passwords are stored in an encrypted database on their system and never leave it.

KeePass has an application with which you can transfer information to several computers, even if the computer you are using is locked and the user only has a flash card.

You can configure access to the database for multiple users, and also export it in text form.

The manager has a built-in password generator that can check the uniqueness and security of each combination used.

As Lifehacker.com notes, there are a huge number of additional plugins and tools for KeePass that expand its functionality and allow you to use new platforms.

KeePass autofill works on almost all systems and browsers, thanks to which the manager can log in to sites that his analogues cannot access. It also allows you to use autocomplete in applications, dialog boxes and other forms where previously everything had to be typed manually or by copying.

In 2010, Lifehacker.com users chose KeePass as their the best manager passwords, primarily for open program code and approach to security.

KeePass officially supports Windows, OS X and Linux, but thanks third party developers, it can also be used on iOS, Android and Windows Phone.

1Password

1Password has a pleasant interface, built-in secure notes, a virtual wallet with payment information, and a reliable password generator that allows you to create combinations by specified requests, and not just accept the random option that the algorithm produces.

1Password can be used on a device without network access, or you can sync your password storage via Dropbox, iCloud, Wi-Fi, or network folders.

You can also set up access for other users to the storage or specify emergency contacts.

1Password supports Windows, OS X, Android, and iOS, as well as plugins for Chrome, Firefox, Opera, and Safari. The premium version of 1Password for one system costs $50 (licensing package for Mac and Windows costs $70). Mobile applications and browser extensions are available only to license holders.

Users who chose 1Password noted its interface and ease of use: the manager is simply a pleasure to interact with. In addition, writes Lifehacker.com, 1Password works in almost any browser, system and dialog box.

Users also noted the “watchtower” function, which notifies about serious violations on the network, and TouchID support on iOS. The manager's disadvantages were also mentioned, including the inability to edit the database on mobile devices.

RoboForm

Development of RoboForm began in 1999, and since then it has had loyal fans, writes Lifehacker.com. RoboForm can be used both as an auto-fill tool for online forms and as a password manager. Encrypted data is stored both locally on the user’s device and synchronized over the network. RoboForm can be carried with you on a flash card so that you can use it on any computer without fear of losing passwords.

You can use several profiles in the manager, each of which will contain individual information about users, passwords and any other information necessary for frequent use.