15 Password Managers

Sorry - Your Password Isn't Not Long Enough

You might have seen this cartoon here before, but it’s worth repeating, as it’s that time of month.  Some organisations require passwords that are longer than the 12 digit codes needed to arm a nuclear weapon.

I’m not the first to notice this. Jesper M. Johansson wrote about in-actionable security advice in an Microsoft Technet magazine article series called Passwords and Credit Cards.

So how do people remember passwords?

  1. Write them down and stick them under a keyboard (aka Koolpin$Gorge*)
  2. Store them in a password spreadsheet/document?
  3. Use a password manager?

It’s option 3 for me.  I use the LastPass password manager. But here are some others to consider:

Name and download link Comments Free / Commercial?
1Password Version available for Macintosh, Windows, iPhone, iPad & Android.  It’s possible, via Dropbox, to sync your 1Password databases between your different systems. $49.95
AcrylicApps Wallet Mac and iOS only $9.99 (iOS) $19.85 (Mac)
LastPass I use this.  There is a portable version called “LastPass Pocket”.   Does form-filling as well. Free version.
Premium version adds mobile device support amongst other features.  $12 per year.
KeePass Free.  Open source.  Maintained. Free
Microsoft Credential Manager Free with Windows 7 & 8.  Stores Windows and website logons. Free
PassBox Windows only. $5
Passgen Written by the great Jesper M. Johansson.  Hosted by Steve Riley @ his old Microsoft Technet blog.
Not a password manager as such.
Free
Passpack “Store logins to all online accounts. Share passwords on a need-to-know basis. 1 Click Login for everyone.“
They blog! (thanks Louise)
Free.
Non-free versions from $18 per year.
Password Gorilla Windows & Mac Free
Password Manager XP I know large companies which use this. $24.95
Password Minder Written by Keith Brown.  Worth a look.
Note: Download link here.
Free
Password Safe As mentioned by Jesper.  Free.  Open Source. Free
RoboForm More of a "web form filling" application, but it stores passwords as well.   Multi-platform (ie. iPhone/Windows/Macintosh/Linux). Free.
RoboForm Everywhere adds multiple device support.  $9.95 per year.
Sticky Password Evolved from the multi-Pass password manager.  iPhone and Android version available as well.   “Sticky Password is now also supporting Android as well and is cloud based with option to choose offline version for those who do not like to have their data being synced over the cloud.” $12 per year.
UsableLogin Generate unique secure passwords for each website you login to.   Multi-platform. Free

* a server, for a sensitive organisation, had the server password stored under the server keyboard. Koolpin Gorge was where the server guy took his last annual leave.

edited 21 September: let’s make it 8 password managers, thanks for the comments folks.
edited 12 October: added Passgen tool description and link.
edited 27 May: added Password Minder.
edited 31st October: added Microsoft Credential Manager & Sticky Password
edited 7 May 2013: updated links/comments.  Added PassBox
edited 26 November 2013: Added Password Gorilla & Free/Commercial column.
edited 5 December 2013: Added AcrylicApps Wallet and updated the Sticky Password comments

Bookmark and Share

File searching with Agent Ransack

Back in October 2006, I wrote that I used Copernic and Google Desktop. Search  Time has moved on and now I use Agent Ransack.  Google stopped supporting Desktop Search in September 2011, and well, Copernic is a $49.95 product.  I’m not against paying for software, but I prefer free.

So now I’m using a product called Agent Ransack.  It’s the “free” version.  Agent Ransack is fast enough for what I want.  The only thing I wish it would do in the free version would be for it to scan compressed files (ZIP, CAB, RAR, 7Z and the like).

AgentRansack

Running applications with separate “Admin” account privileges

Nexus

We have normal logon accounts, and then we have “Admin_” accounts for doing things, such as user account password changes & Group Policy management.

It is, to say the least, a pain to either:

  • log out of my standard account and login with my Admin_ account or
  • run each program with the “Run As User” option.

A co-worker suggested I look at the “Winstep Nexus Dock” toolbar.  It allows me to put all the utilities I need to run with my “Admin_” account into the toolbar, such as program shortcuts.

At start-up, I “Run As” the Nexus Dock with “Admin_” credentials.  Once the Nexus Dock is loaded, it will pass those credentials onto the program shortcuts.

There is a paid “Ultimate” version at $24.95US, which gives you additional features, but I find the free version does what I want.

The Australian Signals Directorate has published an explanatory article here explains why minimizing admin privileges is a good idea.

WinDirStat causing a Bluescreen?!?

windirstatWinDirStat is a good little disk usage statistics viewer and cleanup tool.  But both times I’ve used the Delete option, I’ve ended up with a BlueScreen of Death.

It’s happened a couple of times now.  As I use TrueCrypted volumes, it’s easier to rebuild the PCs then the lengthy recovery process.    Googling, I found that the authors of WinDirStat state:

Several users had contacted us and claimed that WDS caused their systems to show the dreaded BSOD. As a driver developer I know that this is impossible since no user mode program can crash the system with BSOD unless some driver or other kernel mode component fails to check its parameters or whatever else.
WinDirStat causing blue screens?

Just one of those things I suppose. …

I hate grovelling around in Blue Screens of Death.

They’ll tell you why something crashed, eventually.  And the data a crash dump gives you isn’t a matter of opinion.  It is what is is.  So it’s a good piece of data to have, but it’s painful to wade though.

So I was overjoyed when when of our field support techs reported a problem to us, with the summary:

Multiple PCs have bluescreen’d multiple times.  Using BlueScreenView, it looks like the Intel video driver is the cause.

bluescreenview  (this screenshot sample is from the Nirsoft website).

I was overjoyed because this was the first time I’d heard of BlueScreenView.   From the BlueScreenView website:
”BlueScreenView scans all your minidump files created during ‘blue screen of death’ crashes, and displays the information about all crashes in one table. …”

This utility will make the initial diagnosis of a BSOD much easier.  I’ll be adding it to my diagnostic tool kit .

Now won’t Facial Recognition be interesting …

Or are those girls in the Facebook ads real???

And the answer, for at least half the time is YES and NO.

YES they’re real, and NO they’re not looking for love in all the wrong places.

Tineye, which I’ve blogged about before, is really useful for detecting the source of a photo.  Some Facebook examples follow:

iStockPhoto

From iStockPhoto,com

Katharine McPhee

Katharine McPhee anyone?
(and Katharine isn’t even 40 yet, shame on you Facebook)

Dating40s

Meet Courtney Friel, a 31 year old Entertainment reporter Fox News.

The point of all this?  Two.

  1. Not everything you see is as it is.
  2. Won’t Facial Recognition be interesting once Google/Facebook release it.
        As an example, take this photo:
        nose-pick
    I don’t think the lady would really want to be identified as the bridal nose-picker.

Removing old update backup files from Windows XP and Windows 7

Windows XP Update Remover

Before I release a new Windows XP standard operating system image, I use a utility called “Windows XP Update Remover”.  I do this to reduce the number of “$NTuninstall” directories and to save some disk space.

Sure, 400MB isn’t that much in the world of 1000 gigabyte drives, but if it reduces the GHOST image size but that much, it should make a desktop deployment just that little bit faster.

With Windows 7, I’d just use the built-in Disk Cleanup Utility.

Cleanmgr