• expired

Lastpass Multi-Device Sync Now Free (Previously Required Premium Subscription USD $12/Yr)

2780

Starting today, LastPass will no longer charge extra to access your password vault from different types of devices. That means free users can now access their password vaults from their phone and their desktop at no extra cost.

Previously, you’d need a $12/year premium subscription to access your LastPass passwords from two different types of devices, like the iPhone app and the Chrome extension. Now, that’s included in the free tier. Premium users will still get some added benefits though, including priority customer support, group password sharing, and extra two-factor authentication options.

http://lifehacker.com/you-can-now-use-lastpass-on-multiple-d…

Related Stores

LastPass
LastPass

closed Comments

  • +16

    Wow thanks for the heads up. I only just got this a few months ago, never would have realised that the only piece of functionality I paid for would go free (can't blame them for not emailing users about this change considering a majority of their users are probably paying for the same reason I did).

    • they did send an email, was more like an announcement after the fact though.

      • they did not send me an email.

  • +9

    I have paid for their Premium Subscription already.
    Very nice offer to free tier.
    I would really recommend this software if you haven't tried it out yet.

  • +1

    Really like the Lastpass. Does anyone use anythojg and can recommend better than this?

    • +3

      I use Enpass and am quite happy with it

    • +3

      I use safe in cloud, which was $5 for the Android app (no subscription), and has free desktop apps on pc and Mac and a decent Chrome extension. Also syncs through your own cloud account.

      Note that I'm pretty sure they've changed their pricing since I got on board.

    • +18

      I use keepass. It's a bit more fiddily than Lastpass or more polished password managers, but you store the database file locally on your own machine instead of on their cloud, and you can just use Google drive or Dropbox to keep that file in sync across multiple devices.

      • Word! I also keep a copy on my NAS

      • +2

        Ditto, and I use Keepass2Android on the phone and sync with onedrive.

      • +2

        I've been using KeePass for a couple of weeks now too and find it pretty handy and useful. I was briefly using LastPass free trial before that but my Ozbargainness got the better of me (didn't want to pay $12 USD/yr LOL) so went to KeePass. I'm pretty impressed with it but agreed it's more fiddly and not as user friendly but I feel it is potentially better then LastPass.

        Saving it on Google Drive/Dropbox is a good idea. However, what I want to figure out is how to sync passwords with phone. Do you know a way to do that?

        • +1

          If you are opening the key store saved in Google Drive it should be synched. Just remember to save after you add a key entry (if appropriate)

      • +1

        +1 for keepass. Used in many IT corp sectors I've dealt with also.

        Wouldn't trust my personals on the cloud, unless it's on my own NAS.

      • +3

        I've been using keepass for years, I keep a copy on Dropbox and sync to all my devices:
        - Chromium: CKP
        - Android: Keepass2Android
        - Linux/Mac/Windows: KeeWeb

        • Nice thanks for those.

          What's the advantage of KeeWeb over the original KeePass app? It looks like KeeWeb is more user friendly.
          And also why would you need the Chrome extension if you've got KeeWeb/KeePass (with AutoType)?

          The Android one I understand.

        • @illumination: you said it, KeeWeb is more friendly and looks better too.
          Chrome extension will automatically match the URL and auto-fill the credentials for me if I wanted it to.

      • +4

        LOL at saying "you store the database file locally on your own machine instead of on their cloud" followed by "you can just use Google drive or Dropbox to keep that file in sync". I.e. that's still on a cloud.

    • +5

      I use 1Password. You can choose to store your files anywhere… the software is a 1 time fee, single user licence with no pressure to upgrade. They recently released a product where your passwords are stored online (just like LastPass) for a monthly fee.

      They're a small business and I trust them. They know their stuff.

      But they can be slow updating their software on Windows and Android. They vowed to change this.

      • +1

        I'm on 1Password too. Some LastPass users left them last time when they were acquired by someone else (who happened to had a bad record, I forgot the company though) - was a big commotion back then

        But I used LastPass before and really happy with it, especially for a free service

        • Yeah, they were acquired by LogMeIn. Doesn't sound like they've mortally messed LastPass up though… yet anyway.

      • +1

        also on 1Password. got the 1 time fee for free thanks to an ozbargain post a long time ago.

  • +2

    sooooo what if my last pass is hacked…doesnt that mean all my stuff is hacked?

    • +10

      Nope. All the data itself is encrypted and if it was stolen, all they'd have is a random bunch of characters.

      • err, nope - you are putting all your password eggs in one basket. If your LastPass password is compromised, say by a keylogger trojan, then all your passwords are.

        You can guard against this by enabling 2 factor authentication, or a sheet of codes in case you lose your phone, too.

        • EDIT: Nevermind.

        • +8

          I thought he meant if Lastpass themselves were hacked. If his own master password was compromised then yes, two-factor authentication sorts that out. And really, 2FA should be enabled on everything you possibly can. I have it enabled on around 13 sites so far, and enable it on new ones whenever I can.

        • +1

          If you have a keylogger trojan etc it's all over anyway, LastPass or not.

        • @Troposa: Except for where you have 2FA enabled ;-)

        • @AncientWisdom: most 2FA wont help, as you will have a man in the middle.

        • @Troposa: Sorry but why would having a keylogger implicate to a man in the middle? Please elaborate.

      • Encryption is only as strong as your password. Almost all places store passwords encrypted these days.

        When companies like Ashley Madison get breached, the data that is stolen is encrypted. The interwebs then go about decrypting it. Since most people use simple or predictable passwords, It does not take long for it to get decrypted. The more processing power the interwebs have, the faster it decrypts. Even two factor is crackable with enough time\CPU.

    • +5

      I can't remember if there is two factor authentication for logging into vault in free package but if not then if someone got your password and logged in as you then yes they would have all your passwords.

      Don't use an easy to discover password for your vault.

      • +11

        You can use Google authenticator 2 factor for free.

        • +1

          cheers, after posting I checked that out and strongly recommend everyone use 2FA on their account.

        • I still use a paper grid as my second factor which from memory was the only 2fa option when I started with LP. When I get a phone with NFC I might get a Yubikey but only really because it's a cool gadget. I doubt it will lower my security risk

        • @WeiKaiLe: 2FA seems a bit painful… eg does having to type in a second code every time get annoying? When you are travelling will you actually get the mobile code?

        • +3

          @nuchalis: When you log in on a new device (PC/phone) the LastPass 2FA system gives you a code, but allows you to tap a tickbox on the iPhone (if that is your "base") and that authenticates the device you are logging in on - and you can have that set so it won't ask again on that device for 30 days.

          In other words you don't have to enter numbers if you respond within about 10 seconds.

      • +1

        Quantum computers will make passwords pointless.

        • +1

          Encryption capabilities will increase with processor power and keep pace, so login passwords will be fine so long as they change occasionally. Encryption chips are becoming the norm, the weak password only unlocks access to the real encryption key/certificate which can be millions of bits, and they cant be brute forced due to their internal logic enforcing delays and auto deletion of the key.

          It is important to beware that old files/data captures can be stored and cracked in 10+ years though.
          If someone stores your secret or incriminating data for long enough it will be easy to crack with faster machines or when an algorithm flaw is exposed one day.

        • Are quantum computers in use already? Shall I give up encryption and change all my passwords to "qwerty" already?

        • @gguu:
          Just select one of these
          https://www.teamsid.com/worst-passwords-2015/

          But Quantum computers ok at cracking passwords, but they're very good at getting prime factors (which are what is used to encrpted private/public key encryption (e.g. https).

          So they can just decrypt your https stream & just take your password.

    • +3

      Yes.

      However there is no perfect security solution and a password manager such as Lastpass is still the most secure solution vs. anything else for most users based on human behaviour (because people will always opt for convenience unless they're extremely disciplined).

      If you use anything else the numbers say you have a higher chance of being compromised than if you used a password managger.

  • +1

    Looking at it you still need to pay for Premium if you want application filling of passwords. I use this quite a lot on my Nexus 6p so looks liked I will still need to keep up with subscription.

    Until Safeincloud (hopefully) introduces this functionality into their app.

    • +2

      Save & fill is free, so I don't think you do need to pay for that. Lastpass for Applications is for desktop programs if that's what you're referring to. I didn't find it to be particularly useful. It's not as seamless as all of the other stuff, so I just store my login details as normal and copy/paste to desktop programs that I use it for, which is not many anyway.

    • +1

      Keepshare for Keepass has password filling on Android with fingerprint unlock. Around $7 I think. Free Keepass Chrome and Firefox extensions on PC too.

  • +2

    Thanks. My premium subscription ends in one week. Great timing.

    • Same here, glad I didn't hurry to renew

    • It's OK, Lastpass team have all you internet banking details so don't worry, they will pay themselves :)

  • So for free users is there any limitation of number of passwords we can save, or number of websites we can use it for? How this works?

    auto fill passwords like browser?

    • +1

      no limitations, or websites.

      Yes it will auto fill fields like usernames and passwords, but there is a form fill feature as well.

      I use premium and will continue to do so, as I share some account details with my wife. We also link to each other's account so she can access my account if it has not been used for X number of days, like I passed on.

      • +6

        sharing bank password with wife… not sure it is wise - boxing day is coming soon…

        • +7

          Shared account, so no issue there … or plenty of issues, but all known

          Me on OzB is a bigger issue, as the new TV in our lounge room shows from the Sony TV discounts from last week.

  • +3

    Great! I was looking at password manager programs only last week and decided to go with Keepass; it's open source and free but tricky to setup and not very intuitive.
    Will give LP a crack!

    • Yeah, I've been using Keepass and Google Drive for a couple of years but a "slicker" solution would be nice.

      Although, the data breaches were what led me to Keepass…

  • +1

    Ah I bought this a week ago

  • Kinda glad my subscription renewal failed due to the discount chemist toilet paper debacle.

    • What happened with that? I tried and failed that deal

      • Everyone's credit card details were stolen from the toilet deal. So everyone had to grt replacement credit cards. Mine was used at a Florida service station

        • +1

          Holy crap!

  • +2

    There's a few instances where there are breaches. Articles below if you're interested, take some caution in storing all your passwords in one place

    https://techcrunch.com/2014/07/11/lastpass-finds-security-ho…

    https://www.cnet.com/news/lastpass-ceo-reveals-details-on-se…

    https://duo.com/blog/breaking-down-the-probable-lastpass-bre…

    • I've been thinking of using it for all my non-important passwords, like Strava/Reddit and the billion pointless accounts that we all are forced to make (ie not my google/paypal/ebay/Amazon)… would that make sense?

      • +1

        it's really up to you, if i used it i'd stay away from sites with your personal info like address (strava might hold that) and bank details etc.

    • +2

      To be fair they have been above board in each incident, quickly disclosing the breach and taking steps to ensure everyone's data is safe (to the point I remember a large chunk of users getting locked out because they didn't know their email password and therefore couldn't reset their Lastpass account).

      The last link has some good advice:

      • Never store sensitive passwords in your LastPass keychain. LastPass is great for all of the random non-critical websites you browse and log in to on a daily basis, but the risk of exposure is too great to trust it for highly sensitive credentials (eg. online banking credentials).

      • Regardless of the outcome of this incident, you should be using a master password that follows strong password guidelines and includes mixed-case alpha, numeric, and special characters.

      • And lastly, encourage the websites you frequent to employ two-factor authentication (I may be a bit biased but I hear those Duo Security folks have a pretty slick two-factor platform ;-)), so that we can kill all of these password management headaches once and for all.

      I will add to those points: always use a strong but memorable password for your email service in case you need to reset your password mangers matter password :-)

  • My renewal was this week… nice timing.

  • +4

    MOTHERF****R I just renewed last week.

    Edit: I still need password sharing…. so I won't go nuclear….for now.

  • +1

    Thanks OP

  • +3

    When an application that's worth paying for goes free that should ring alarm bells. It means they've found alternate monetization model that may not benefit in the long run.

  • Been using lastpass for a year - really good, highly recommend. I paid for it though. The best thing is you can store all your families passwords in the one account and use across multiple devices wherever you are - with very long complex passwords and two factor authentification.

  • Nice! I had paid using credit from google rewards :-)

  • Hmmm should I cancel my paid subscription? Not very expensive anyway

  • I guess people are departing since they got bought by LogmeIn, as you'd expect to happen.

  • +2

    Guess who regrets buying 10 (or was it 8?) years worth of extensions to their account last year…

    • You ?

      I was thinking about it - trying to beat a price rise…didn't expect the opposite!

      • +1

        That's exactly why I did it,… Logmein bought them - so I figured they'd change policies for the utter worst, so I thought I'd lock in some long term membership.

        Oh well

        • Instapaper recently canned premium features (all free) and pro-rata refunded those that had paid!

          but I guess here they are still offering the premium tier.

          Can't really see anything too enticing, but might give 'lastpass for applications' a try - didn't know it existed :O

  • is the ios app free? using lastpass's non mobile optimised site in mobile browser is so painful

  • +1

    I've used it for years and think it's a great product.

    The paid version says it will be "Ad Free". This suggests that the free version will have ads.

    • Yes, I was looking at the features list (checking what benefits still existed for my premium account) and noticed the "ad free" bullet point in there too.

  • I just renewed my sub. The only reason why I did was because of being able to access across multiple devices. If that and Google Auth are in the free tier I just paid 12 bucks for nothing.

  • +4

    This is not free premium membership. Just wait for the advertisements to kick in.

    • I was thinking just the same thing…… but surely not?

  • +5

    I've been using LastPass (premium) for a couple of years now and reckon it's the bee's knees!

  • +1

    I'm glad I found this I was going to renew this month after numerous emails reminding me I'm about to expire

  • Was going to buy this but last pass is now free! Premium users just get better support.

  • +2

    It says they will be using ads now instead. How bad/intrusive are the ads?

  • -2

    Seems like a bad idea to be giving all your passwords to a company when they're not receiving anything in return…

  • Noob question - is this (really) better than Chrome remembering my passwords for me?

  • -1

    I feel safer with keepass, sync the data file via dropbox.

  • I use 1Password, pretty happy with that service.

    Thanks OP anyway…

  • I never boarded train and not using password manager. I think I want to give it a try.

    So my basic questions are,

    1. Once you start using it and don't type password occasionally, you may not remember regular password. What happens if you are locked out from last pass or need to access account from friend's PC or want to reset password but you don't know what was it.

    2. Any recommendation to store pin number for which I can access in readable format after I unlock my application with password/touch id? (only for mobile use)

    3. What about backup where similar to above where I can encrypt with strong password and access in readable format on my PC? I aim to write down all password and make it available in readable format.

    • 1.) the idea is to have you remembering only one master password. On the web browser extension you can choose to not remembering the password so that every time you restart the browser it asks for the PW - just make sure you don't use that PW anywhere else in any form or pattern just to be safe.

      2.) don't use the same pin as the phone's unlock pin :)

      3.) Lastpass is completely cloud-based - you don't have an encrypted file to store locally or elsewhere, although you can export all your passwords if you log in LP's website but it will just give you the PWs in plain text. Keepass is another popular PW manager that offers a locally stored PW vault.

      • Thanks but sorry for not making it clear enough.

        1. I want to store my credit card and account PIN number so I can access it when I need to do transaction.

        2. Yes but I don't want to store in plain text, any suggestion for app/software to lock it and encrypt it and decrypt it when I need to access passwords.

          1. you can store CC details as "Form Fill" in LP. I use this fill CC details on sites that don't take Paypal. Account PIN (ATM Pin?) can be stored in "Secured Note".

          2. on mobile there's an option for offline access, which will still require master PW/Touch ID from the LP app.

  • replying above

  • OK, what am I missing ?

    I have the iOS app and just opened it. But there is a 'Go Premium' tab at the bottom toolbar and it is asking me for $17.99 !

    Is the app free or the mobile website ?

    • +1

      The point is it should now work without you going Premium. So it's not that Premium is now free (it isn't), it's that the free version now allows use of the mobile apps.

      • I get it. Ta

Login or Join to leave a comment