This deal is back with a different promo code.
The Family Account includes protection for up to 5 people.
- Unlimited passwords, credit cards, secure notes, and more.
- 1 GB secure document storage.
- Award-winning apps for Mac, iOS, Windows, and Android.
- 24/7 fast, helpful email support.
One way to not give them or anywhere storing the exact CC details is to pick any random CC ‘digit position’. Say last 2nd digit. Or last digit. Substract it from 9. so instead of number 3, u shd store as 6. And then store that digit. Only u know the position of that digit.
So while using that in actual transaction, substract the input number from 9 and you have the correct CC number.
Bit of practice but u have a way to safeguard to some extent.
Ever heard of a checksum? lol
That doesn't matter when you are only storing a note of your credit card number
@spaceflight: Credit card numbers use an algorithm that can find a single error number and correct it.
The Luhn algorithm will detect any single-digit error, as well as almost all transpositions of adjacent digits.
@askbargain: I know, that's how checksums work.
They can't find a error number and correct it like you are claiming.
@spaceflight: Hrrmm taking the Wikipedia page too literally? One missing number has one possible solution, two missing numbers have 10. The Luhn checksum is a weakness.
Lol what happens if you want to share this with your family and you each have your own rules
You just invite them to create accounts I guess.
Encrypt your 1 place storage with a physical hardware key then…
Let me guess, you store your half a dozen used passwords in a book somewhere near your computer.
Nah, yellow post-it notes are more suited
Notepad file stored next to recycle bin icon on desktop named “passwords.txt”
Arguably safer in many ways given the biggest threat these days is from the internet itself and nobody is hacking into an actual book from [insert hacker country here]. The average burglar is there for the TV and jewelry not random notebooks. Of course if you have untrustworthy friends or relatives or are paranoid about hacker burglars you can use your own encryption scheme in the notebook. Here is an easy one to crack: Hodz&b048r7g#4P1#nQ
(I use a password manager, just not for banking. That's in my head.)
Been with them for years.
I can see.
You really should change some of those passwords.
I know, I keep telling myself that.
What happens on the 13th month?
Locked out or pay up?!!!
Your account becomes read-only, so you can still use your account and the saved passwords you just can't add new ones.
Better off with LastPass then, free password manager.
or KeePass?
@neonlight: You guys should try a more modern open pass manager like bitwarden. I found too many sketchy KeePass apps, hard to trust all but a few and they are quite sparse on features :)
Code invalid for me
is there any way to apply this to an existing 1password account?
I have v7 and clicked the link posted below. Seems to have worked.
Hmm. I thought it gave unlimited apps for 5 people, but it seems to be wanting $10.50 per month for the iPad app.
Did you log in to your 1Password account? This is a separate product than the iOS and Mac standalone apps, it doesn't use iCloud but its own 1Password.com servers.
I don't know if it works for existing accounts that took the CANVA2019 promo last year. I've tried it and signed in successfully, but still have the same number of "trial" days remaining.
didn't seem to work for existing accounts with CANVA2019
I created a new account and just copied all my vaults across from the old account. Got an extra 150 days from prev canva freebie
Keen to look at that method - please explain…?
Just recalling this from memory. Log into your old account on the desktop app. Then open up my.1password.com in a browser and log into the new account. The app (i am using the Mac version) will ask you if you want to add the new account. Click yes. According to the support page on migrating vaults it should ask you if you want copy data over but I never got that. So what I did instead was go into the app and click on each vault. Then click on one of my logins in that vault. Hit CMD+a to select all then right click and copy. In my new account I created a new vault and right click paste. I don't have many vaults so all in all took a minute. I'm still keeping my old account just in case because it said some references couldn't be copied.
What if someone hacks into your 1password account or if there’s a leak? Would that give them access to all your accounts and ccs? Does it come with any protection?
The vaults are end-to-end encrypted using your password and a 34 character secret key that's generated when you first sign up (which you're supposed to print and store elsewhere), so if your vault were leaked it's unlikely they'll be able to break into it.
But yeah, if they gain access to your vault it's game over, and password managers aren't perfect. Here's one opinion piece why they're better than the alternatives though.
You would only ever use one of these with 2FA turned on for every access. If you are going to not use 2FA or have it 'remember your password', you are of course open to attacks on your local machine
2FA SMS (still not all that safe) or Yubi Key / similar physical hardware and you're good.
Try this link https://start.1password.com/sign-up/family?c=CANVA2020&l=en
Comes with 1 year free for me.
There was mention of a direct link in the previous deal - just modified it for the new code
Lastpass is always free. Unfortunately this one doesn't have a free option.
Lastpass is also terrible in terms of usability compared to this. I moved after using it for several years.
yea it was really annoying to setup but i think my adblock wasn't helping. its good now though
I have been using Lastpass for 5+ years (paid for premium!) and do find it frustrating. How did you go about switching to 1password - was it simply a manual process?
It's very easy to export and import your password across from other services. You'll spend at most 30 minutes moving across.
I switched from Lastpass to 1password. Took about 10 mins. You get lastpass to generate a csv and then upload that csv to 1password and its all done.
@bigbadwolf21: I've been getting a tad frustrated with lastpass - is this much better (I. E. Worth the effort to switch over?)
@MynyMouqe: Yeh I think 1password is much smoother to use. I use a Macbook for work and it integrates nicely with brower extensions and Mac App, can use fingerprint reader etc. I presume you can use FaceID on iOS as well, but I have an android mobile so Im not sure on that one.
Definately worth trying whilst its free. Don't delete my Lastpass, just revert to a free account, so you could go back if you don't like it.
What aspect of LastPass are people finding annoying? How is 1password better?
+1 on LP. Great free version and I find it easy to use and has 2FA
So is Bitwarden
does it have the same functions? should i move to it?
I use 1Password at work and Bitwarden personally. 1Password is definitely superior in terms of usability but BitWarden is just fine too. Worth paying 10USD/yr to BW to get extra features like TOTP
edit: yes, BW has most commonly used features of LastPass.
I'm also a long time Lastpass user - however I'm getting a bit annoyed that they are moving functionality that used to be in the "free" bucket into the now paid bucket (with no notification I might add - just removing features I was making use of silently)
I was using one-to-many sharing and emergency access - they've taken those features away - with emergency sharing you can no longer enable it at all (on new setups) - but since I had it enabled before it's still there in my account - however I used to have two emergency people setup - they just silently removed one of them so I have one now and I assume I can't alter it?
This promo code is invalid and will not be applied.
Edit: As per post update, this link works https://start.1password.com/sign-up/family?c=CANVA2020&l=en
If you are more tech savvy, just use Keepass. Free for life, open source, 256-bit encryption and you can do a cloud sync. If you are afraid of your cloud account getting hacked and your keepass file brute-force attacked, use a secondary key and store it in another cloud provider.
Do you find Keepass safer than cloud providers? I feel like cloud is better since you'd get notified if someone attempted to brute force, if someone got my db file they could take their time trying to get in and I'd never know about it. Although I guess if your password is strong enough then no one would go through the trouble.
Never tried any cloud provider password managers before as I trust myself more. Also, with cloud providers it's not just your access getting hacked. Could be the provider itself hacked and mass account details accessed.
With keepass on the cloud with 2 separate providers thieves need to know all 3 of your passwords to get access to it.
Unless a flaw is discovered, it would take billions of years for a modern supercomputer to brute force all the 2^255 combinations for AES-256 (about 50% of the 2^256 total combinations would be sufficient). That's a lot of electricity someone would have to pay for to get at your passwords!
brute force all the 2^255 combinations
don’t brute-force. Social engineering gets you there more cheaply. Try “123” - may match on first go.
I have been using keepass for last few years and has been working fine. The key file is locally stored so its with you.
The only issue is, you cannot use it across multiple platforms and no syncing of different files.
Make sure you have a backup of the key file, if it's gone, so are all your passwords.
I keep the db file on one cloud service and the key on another cloud service. Both with different passwords which are again different to my keepass main password. No issues syncing on my Android phone and iPad.
For now, I have been storing the key file on cloud service and accessing that way but it feels bit risky.
which apps do you use for iPad? I am using miniKeePass, but it seems the apps had been removed from app store. Looking for the replacement, in case there is updated version of the KeePass file.
i use syncthing to sync between devices locally
I’d be wary about relying on cloud providers (only) for my password database and key file. They can certainly be convenient and feel secure, but if either provider went bust or decided cloud hosting was unprofitable, they could close the service forthwith, no notification, leaving you with no access to your passwords. As such, I’d keep a copy of both somewhere else (either locally, or with other cloud providers). Also, after recovering my pc from a failing hard disk, involving a fresh Windows install on a new disk then loading back my backed-up files, I had to be alert to where and how Keypass used the key file. Ie as you increase your security, you also increase the risk it might catch you out such that you lose access to all your passwords.
Bitwarden is worth to try too. It’s open source and you can deploy it to your own server.
This.
Have moved from last pass to running BW myself (via Hassio/Home Assistant). No stupid relogin issues. Works in IOS, browser, chrome extension. Supports Duo 2 fact auth.
I was using Bitwarden for 8-12 months, I ditched it for 1password due to various reasons:
- One man team developing Bitwarden, vs a big company backing 1password
- Lots of feature requests never fixed/added. e.g. Ability to duplicate secrets.
- No open roadmap on whats upcoming
- Outstanding issues left unfixed for ages. (https://github.com/bitwarden/mobile/issues/489)
I moved across to 1password and it's been amazing. The UI is so much better, and they have more features. I'm happy to pay $$$ for the way better desktop apps, better Chrome desktop autofilling, Android autofill actually working, etc.
Bitwarden is a good free option but it's not as good as 1password.
Thanks for you input!
Thanks for this; I've started migrate from LastPass to BitWarden and so far happy; but something to be aware of…
highly recommend Bitwarden if you haven't tried any password manager before.
free, open source, with apps and extensions for browsers.
does it have an android app and 2 factor authentification with phone?
Yes
nice and they have their own servers and everything?
@belongsinforums: Yes, or you can potentially do self-hosted. The paranoid in me only wants to store sensitive data in self-hosted, and less secure stuff like generic website logins in their servers.
I was using Bitwarden for 8-12 months, I ditched it for 1password due to various reasons:
- One man team developing Bitwarden, vs a big company backing 1password
- Lots of feature requests never fixed/added. e.g. Ability to duplicate secrets.
- No open roadmap on whats upcoming
- Outstanding issues left unfixed for ages. (https://github.com/bitwarden/mobile/issues/489)
I moved across to 1password and it's been amazing. The UI is so much better, and they have more features. I'm happy to pay $$$ for the way better desktop apps, better Chrome desktop autofilling, Android autofill actually working, etc.
Bitwarden is a good free option but it's not as good as 1password.
I ended up doing Bitwarden hybrid self hosted approach with private back-end Bitwarden_rs server hosted in free compute instance on Oracle cloud running the docker image.
What?! Oracle are giving something for free? What strings are attached?!
I'm going to go the Bitwarden_rs way as well, but via Hassio :)
https://www.oracle.com/au/cloud/free/
You essentially can spin up 2 compute instances (I'm using the oracle autonomous linux 7.7 images) with 50gb of disk each; they are 1 cpu with 1gb of memory. There is also 10gb of separate object storage and archive storage (similar to EC2)
You also get static IPs for those machines, and I chose the Sydney data center
I ended up creating just the 1 compute instance using 50gb of the 100gb allowed block storage, and then created a separate 50gb block storage volume which I mounted. So the single linux VM was two separate 50GB volumes - the boot volume and the other standalone block volume which I've formatted as xfs and mounted.
It's not going to set any speed records, but it is free.
Woah damn, that's very generous. Thanks for the heads up. Much better than AWS's free EC2 offer.
That said, I'm doing lots of stuff in Lambda nowadays anyway, which is dirt cheap.
This is a great tip.
I have 1Password and LastPass. Both are great. I don’t keep important info on LastPass though but it is the one I used the most out of them both.
Dashlane is so good. Bonus feature of VPN which has been super useful.
Anyone who thinks using a password manager is a bad idea doesn't understand web security.
I signed up for the free 12 month last time, forgot my password and lost the secret key.
There is no way to recover this.
That's a feature of their security model (and is the same for Lastpass, Dashlane, Bitwarden, etc). They can't decrypt your password vault nor do they store your passwords so that breaches/leaks don't compromise your data.
And then you're stuck forever.. hard to move out all passwords after the first free year.
It's pretty easy moving between different providers. They all have export and import options.
Pros / Cons vs LastPass?
I presume there are mobile apps and browser extensions on 1Password?
Yes they have mobile apps + extensions. Not much difference. 1Password has a nicer UI. LastPass has had breaches in the past but pretty sure nothing of value was taken. Some people also hate LogMeIn. Otherwise both are pretty similar. I personally prefer 1Password's apps compared to LastPass though.
One thing that seems a big buggy about the lass pass app is the autofill functionality built into android, have you tried or used that at all?
Well they get your passwords and credit cards.. :)