A few points of clarification and caution for this otherwise excellent video: @1:45 "First click here so that you can see your password" Unless you have some obscure reason for revealing your password, you should never click to see it. There are reasons why it is not normally visible, such as someone might be watching, or a spyware application (that you do not realize that you have) could be capturing screen images, or an office security camera might be able to read your screen, etc. The host probably stated to click to view the password, for demonstration purposes. But he did not state his reason. So there might be viewers that do not recognize the security risk in revealing your password. @2:19 Although the host's choice of a password for this demo is very good, it is not a good idea to replace the letter "e" with the number "3". Password cracking programs do this -- it is a popular rule. This type of replacement will slow down a password cracking program by, perhaps, 1/1000000th of a second. You should never do what is popular, when it comes to creating a password. Replacing, for example, one "e" with "22" and another "e" with "#@" will be far, far harder to crack -- and with the length of the password used in this video, I would say that it would make the password impossible to crack. Anyone interested in how to choose an extremely strong password should watch this video: ruclips.net/video/3NjQ9b3pgIg/видео.html The above video will explain how to choose a password that you can easily remember, yet be impossible for even a room full of computers to crack. @3:29 "keyfiles" This is a great idea. But know that if you lose that keyfile, you are screwed. If your computer dies, and especially if your hard drive becomes unusable, you are done, kaput, finished. Your only salvation is if you made a copy of your keyfile, and kept that copy on some other storage device. But you would not want to draw attention to that file. So name it something that will blend in -- like "appointments.txt" or "order#", etc. Do not name the keyfile "database.key", as shown in this video. Also, if you will store your keepass database on dropbox, or any other third party storage service, do not store your keyfile there, too. A backup of your keyfile should be stored on, for example, a flash drive. Even better, give a copy of your keyfile to a trusted family member that lives at a different location (do not e-mail it to them -- find a way to give them a copy that avoids sending it in the clear over the internet). Giving them a copy of your keyfile will protect you in the event of a fire or a burglary. Your database will be on, perhaps, dropbox, and your parents/brother/sister/close friend/ will have a copy of your keyfile (and only the keyfile). When you replace your failed computer with a new computer, dropbox will have your database, and you will retrieve your keyfile from wherever you made a copy, and you will be good to go. @5:47 "recycle bin" Folks, this is not the Windows recycle bin. The recycle bin within the keepass program is independent of the recycle bin that comes with Windows. The purpose of the keepass recycle bin is that if you mistakenly delete an entry from within your keepass database, keepass can restore that deleted entry (because it was not really deleted -- it was just marked as not to be visible). But if you tell keepass to empty its recycle bin, then it really will delete those "marked invisible" entries, and they will be gone, and irretrievable. Excellent tutorial for an excellent password manager!
Thank you so much for taking the time to write all of this down. I have pinned this, so that others can benefit from your great addition to this comments section!
Great video and also great additions. To create strong passwords I highly recommend watching these 2 videos about passwords from Computerphile: How to Choose a Password - ruclips.net/video/3NjQ9b3pgIg/видео.html Password Cracking- ruclips.net/video/7U-RbOKanYs/видео.html
What would you recommend when websites ask us for our date of birth? Let say hackers gained access to someone's Facebook or Gmail account, would it be wise never to give a clear description about one's birth so that hackers won't be able to get a credit card in our names? Also I make sure I use alias names as well.
My husband made me watch this video and download the software. I think it's pretty awesome. I'm not really looking forward to redoing all 300+ passwords I have saved on my google account, but will feel more confident my data is safer! Thanks for the video!
For those wondering what the custom settings are involving the override default sequence for websites that require users to post their user name first and then it requires the user to post the password on a new page for the password later on, the sequence is this: {USERNAME}{ENTER}{DELAY 1000}{DELAY 1000}{PASSWORD}{ENTER} on the Auto-type tab for the "Override Default Sequence" option. It's useful to avoid manually copying and pasting such information on Gmail, Outlook, RUclips, etc.
You can optimize the code further by writing {DELAY 2000} instead. Other than that, this is exactly what you should be doing in such a case. Thanks for sharing! You can also only paste the password by pressing CTRL + ALT + SHIFT + A.
Maybe you could have mentioned that one can delete the default groups (General, Network etc.). But people will figure that out. Anyway this is one of the best overviews of Keepass I've come across so far. Straight down to the core and especially about the Auto-type function. I advanced to 2.x version of Keepass a couple of days ago and I'm still learning about the possibilities it offers. Thank you as well for recomendations regarding the general settings, I'll set it up as you showed us.
This if of course correct, but because keyloggers don't offer any real benefits in most situations and instead introduce new security risks, I explained them that way. Thanks for your feedback!
8:15 in that list of generated sample passwords, some don't have [?] nor [!], some have only [?] and some only [!]. I thought that the inclusuin of [!?] means "must contain both characters in the generated password". +1 and subscribed by the way excellent video!
Sorry, I just read your comment. I think adding these characters will only add them to the pool of characters to create passwords from. Some will have it, and some will not. If you want to make sure it is as unique as possible, add characters manually. I personally always add some random characters in between to make sure I actually make it random. Just so you know, computers can not actually create random passwords unless you give them some input. We do this in the video around 3:42 for the key file - where it says entropy collection. Hope that helps. Thanks for subscribing!
Hi Valentin, thanks for this wonderful tutorial. I'm still thinking how I can syn my passwords to different PCs (like work, friends and so on) Do you use the portable keepass to sync the whole folder vis dropbox? So when using a PC of a friend you can just login to dropbox, download the portable files and have all your passwords after login with the masterpassword? So at the end you still have to remember the dropbox and masterpassword (and the keyfile) to use keepass everywhere? Thanks for your help. Jens
Hi Jens, this is exactly what I am doing to sync all my passwords. Don't forget to enable 2-factor-authentication on your Dropbox to make it as secure as possible! If you have any further questions, please let me know. I'll be glad to help! 🙂
New subscriber here. I used keepass when I was working and not 5 years later am considering it again. I am a bit different. Automation is not high on my list but could be nice. I want to customize forms with privacy data on them. I haven’t downloaded keepass yet so I will look into that. Also on automation I have a few Linux boxes that I ssh into and automation might be not what I want there. Thanks for the video.
Thank you so much Valentin for your fantastic KeePass video series. Although there are many similar tutorials on RUclips, yours are much more comprehensive and practical. As someone who started using KeePass recently, your videos made it much easier to get up to speed. Great job!
Hey Rick, thank you so much for your feedback and the "Super Thanks". This is the first one I ever received and you will therefore have a special place in my heart for the rest of my life here on RUclips. If there's anything I can help with, please let me know. Cheers!
VK, Thanks again for your help. I finally managed to get KeePass2, KeePass2 Android and Dropbox synced. Note that I gave up on Google Drive. While the process is not quite as easy as you describe I was able to create a DropBox account and redirect the PC side of KeePass2 from the Google Drive (that did not work) to DropBox. The data you sent yesterday from SourceForge was interesting, but still way over my head. Roland
Very Helpful, learned allot. I've been using Keepass for over 10 years. I stay clear of the integration mostly because i feel its a security risk and I'm old school. JMO thx agn
Fantastic Tutorial. Some bank websites disable copy/paste for username / password section. Any solution for such a situation. Image having to type a 30character password when copy/paste is not allowed.
That is correct. This video is quite old and in my newer videos, I recommend to be even more random with your passwords. Any type of logic or convenience for easier remembering is usually something that will make your password weaker. But if your password is longer than 20 characters and not the most generic phrase in the world, it should still take quite a while to break. Using 2FA on top of that will probably make most of your accounts as safe as necessary.
Thank you!!! Great explanation. When you were typing your master password it's possible to see some of the keys you pressed on the keyboard. Although you have a key file so maybe it´s ok :)
Thank you for this!! My new job asked me to use KeePass, and I didn't know how to get it to then fill in the password into the sites I was using, so thank you for explaining this to me so I can look a little less clueless tomorrow at work!
Thank you for the tutorial! Can you please help me? I´m using a KeePass integration in "Remote Desktop Manager". This works fine, however I have now got permission to work on a new server, and then I have a problem: I cannot integrate Keepass anymore :( I right-click on Local Data Source, and then then I choose "add", "add credentials entry". Last time I did this, there was a Keepass-option, but it is totally gone now. Can you please help? I have tried to just duplicate o of the other keepass credentials, but it does not work.
Excellent tutorial - Is there a version of KeePass that I can install on my Mac (macOS Mojave)? I have installed KeePassDroid on my Android phones and would like to sync them with my Mac.
I use KeePassXC on my Macbook Pro and will make a tutorial on that in the future. That version of KeePass is alright, but there are some things that vanilla KeePass does a lot better in my opinion and I'll talk about it in a future video. You could buy Crossover to run vanilla KeePass on macOS more or less "natively", but Crossover isn't very cheap, so it's up to you, whether you want to invest and use Crossover to run some more Windows apps because then it might very well be worth it for you!
I'm new to KeePass and found this video very helpful so thank you ! I'm not sure if I missed it but you talked about not saving your key pass database and your kdbx database in the same folder. What are the negative consequences of that ?
If you save both your keepass database and key file in your dropbox, you risk someone getting inside of your database. This way, all they need is your password. But if you save your key file separate from your keepass database, hackers will have a harder job to get to your passwords. I'd highly recommend to enable 2-factor authentication on your accounts as well.
@@ValentinKossenko I appreciate you taking the time to help out complete strangers. It says a lot about you. I'd like to ask you if you know why when I open Keepass2Android on my phone I have to manually hit "Synchronize Database" instead of it automatically downloading from Dropbox (which is what my wife's iPhone does).
Hi! I never had this problem with Keepass2Android so far so I'll have to test and see. If you follow the steps in my guides, the database should synchronize everytime you open it or make changes. Hope you can find a solution to your problem!
@@ValentinKossenko Ok. Yeah, I followed the steps but for some reason I still have to manually download. It's really no big deal though. It takes one second to do, lol. Thanks again for your time. I will be making a donation to the app as well.
Hi! Thank you for the video. If I were to change one of my existing accounts for a stronger password, I don't know how to do this with KeePass. Do I generate a random password, then copy paste it into the specific website, and then into the KP Database entry? That seems "unsafe" (due to copy-pasting). Any tips on how to now refresh all my existing, weak, passwords, to strong, randomized ones - using KeePass? Thank you for your help!
You can create a new random password, save the entry and then use auto type (password only) using CTRL + SHIFT + ALT + A to paste the password into the specific website. If you use TCATO (two channel auto type obfuscation) you should be pretty safe. 100% safety is impossible though, which is why you should always use 2 factor authentication to make your accounts as safe as possible.
Great tutorial, I could have used this a decade ago! I'll only add that, for me, the Entry Advanced tab get used a lot. You can add strings and file attachments associated with the entry. These might include account, phone, PIN, card #s, security Q&As, etc. I use KeePass for so much more than passwords. Any information I want to securely encrypt, I can throw it in a KeePass database.
Hi, upload your entire keepass folder (except for the key file of that composite master key) to cloud storage like for example Dropbox and install it on every single machine you want to access your database from. You'll have to copy the key file using a usb stick or something else to stay on the safe side. If you still have any further questions, please let me know. :)
this video is incredibly helpful, thanks so much for your effort! just two questions: why did you choose the portable version and are there any big differences between the portable and the installable version?
Hi Anno, I choose the portable version because it doesn't leave any traces in your system and you can just copy it into your Dropbox for example to use it on another computer or laptop without installing KeePass. That way, I can also copy it on a USB stick if I know I will need to access my database on someone elses computer for example. There's many benefits to the portable version, but that's basically what it boils down to!
Thanks for wonderful video. I am new to Keepass, so a question, can keepass be used to store windows10 login credential on which keepass is installed? If yes how to use keepass to autotype password on windows login screen?
Bro, thank you for sharing this tutorial. The way you explained everything was so clear and helpful, making it easy to understand and apply what I learned!
Hi, maybe you can make a New Video how to download any Plugins. I mean I know how to but other people may not. And also show the people how one backs up Keepass 2.
@@ValentinKossenko Hey why do they have a File Keepass 2 and a Program Keepass 2? Also whenever I download a Plugin on my main Database, it ALWAYS SYNCS with the same database backup on my usb drive before I even put my usb drive in! WEIRD I Know, but it just happens and I like it.
Quick question, is there any way to change the script on the autokey for the password so it can match the custom script for the username & password? (wanted to make some delay but I can't see a single customization option)
So, I exported an un-encrypted csv file from my online pass mang, imported into keepass, created my database, deleted the csv file, and no more database....lmfao, wtf is this ?
Good question.. I never had anything like that happen to me previously. Hard to tell what actually caused this without knowing about every step in detail. I hope you were still able to solve the issue.
Hi, I followed your videos to set up Keepass and upload all passwords. And installed all plug-ins as well. So far so good. I moved keepass application to dropbox and then tried to set up google extension. The extension does not seem to connect to database. Can you help here please ? Thanks
What extension are you talking about? I don't recommend using any extension outside of KeePass. Use the auto-type feature with two-channel auto type obfuscation instead.
I very much want the step by step guide that is not a video. Is there such a thing? When you say it is below, I'll be darned if I can find it. My method of learning is by reading and not watching a very, very fast video. I have many unsuccessful hours with various plugins and adaptations of KeePass but cannot get it to sync with Google Drive, so it will also not correctly sync with my android using KeePass2 Android. Can you help? Using KPSync it looks like it is syncing; the time stamp updates but content does not. I'm enthused that you have found a way to work with Google Drive without plugins, though maybe your experience is all from prior to Google upping security on Drive. Ron
Right now, I don't offer any step by step guide in form of text. This video is everything I have for you guys. I will try my best to help you with issues though. I think your problem might be solved by following the steps here: github.com/PhilippC/keepass2android/issues/1833 If you need any further assistance, please let me know! You could also use Dropbox instead, which also offers 2 factor authentication and currently doesn't seem to have any security problems with the KeePass2Android app. The dev already reached out to the Google team afaik but they probably haven't responded yet.
I skip the file requirement, I find it hard to deal with fragmenting the access. I already have a long and complex password. If I misplace a USB drive with the keyfile, or someone else does, then I’d be at square one. And I don’t need nor want security to inconvenience my day.
You can put the keyfile on multiple USB sticks as a backup. Since a key file can be anything you want, you could also just use a song, image, etc. and upload to a random cloud storage and no one will ever know that it is tied to your password manager. Hope that helps and doesn't overcomplicate things for you!
One question from me. How should I configure the entry if the 'Website' login is via a Google account How is the easy way to write that I should login with Google?
If multiple entries for the same application / url are found, you will be prompted to choose one of the entries. I'd suggest to always enable the global auto-type entry selection dialog under settings though. This way, you can make sure to always select the right entry before the auto-type sequence is started.
Remember to choose things correctly with the language you're using for the auto-type function guys, windows search recognize apps if you type the names in english but KeePass will not
Hello from New York City! How to add a key file login feature to a Keepass file that is already using only master password? Thank you for your informative video.
i really late to secure my data and yup now i have only preventing whatever i do (also encrypting data information using software like that) allright thanks for sharing this guide, its helpful for me to understand every features
I'm glad. I have many more tutorials planned for KeePass in the near future with an overview of everything you should be doing. They're coming out very soon, so stay tuned for that! :)
Hey what did you use the title for Gmail, because I tried the Gmail, google and URL as title but didn't work, Keepass didn't show nothing in auto type entry selection board. could you tell us. By the way excellent explanation I switched to Keepass from Lastpass permanently
Hi, what do you mean? I saw that KeePass got an update (1.4), but I wouldn't recommend using that version to be honest as it is quite limited. The 2.x is a lot more versatile in many regards.
I will soon release a new video to explain how to sync the KeePass database even more securely. This could be especially interesting for families that want to keep their main database locally in their home network and just sync between devices from there. Stay tuned!
10:18 keylogger writes all the keys, including arrow buttons. so it will look like uB8fU6zKgek or something like this, restoring the sequence is not difficult no matter the order. I don't know how can you move the cursor without sending arrow keycodes... or maybe I didn't get why it suppose to work?
It's supposed to protect you from simple keyloggers without clipboard detection. If a virus can do both, you are correct and the method here won't help.
@@ValentinKossenko I'm not a security professional. I think clipboard access and keylogging can be done on windows without admin permissions, since otherwise you would have UAC all the time you copy something from clipboard. KeePassXC doesn't even have this option, I think it's quite useless. If your machine is so infected there is nothing you can do, apart of maybe using hardware keys, but even that is questionable, the attacker can just insert himself in the middle of your traffic and do whatever he wants with your machine.
Hello Valentin! I have been using Bitwarden until now, but now I dared to try the KeePass password management program! :) The installation was easy with the help of your RUclips video, and I installed KeePass on a USB stick. Does KeePass now also work on Android if I connect it with a USB-A to USB-C connector to my Android phone? I use the KeeForm add-on which automatically adds the password and username to the login window, so I don't think the add-ons work on Android? Is there an add-on to KeePass that would scan passwords in real time and notify you by e-mail if the password has been leaked during a data breach? For example, 1Password has this feature, and I think it would be absolutely essential. Is it possible to protect KeePass with 2FA authentication? I already removed Bitwarden from my Brave browser and from today I only use KeePass! :) Thank you!
Hi Matias, you will need another KeePass version for your Android smartphone. I can recommend KeePass2Android and have a video on how to set it up, that you can find on my channel over here ruclips.net/video/clNswHCG9So/видео.html. The KeeForm add-on will unfortunately not work on your smartphone as it was made for vanilla KeePass only. Not sure about real time scanning, but what I can suggest is offline checking for breaches manually from time to time. You can find a detailed explanation in my plugin overview for KeePass over here ruclips.net/video/5JD6bBDCs2A/видео.html You can protect your KeePass database with a key file for 2FA, but you can also setup TOTP with a plugin. I haven't personally used a plugin for that, but you should find one by the original developer of vanilla KeePass over on the plugin page keepass.info/plugins.html KeePass is great as you are 100% in charge of your data and you don't need to upload or sync your passwords if you don't want to. Online based password managers are a lot less secure in that regard as they are often attacked by hackers and leaks can occur. Good choice with KeePass here and good luck! If you have any further questions, please let me know and I'll try my best to help you out!
@@ValentinKossenko I have now successfully installed KeePass on my Windows 11 computer, and I also installed the Keepass2Android app on my smartphone, and it's really good, thanks for your recommendation! :) I have a question regarding the Windows version of KeePass. Is there any way that if I want to log in to Facebook, for example, that KeePass would automatically suggest a Facebook password for me so that I don't always have to use the KeePass search function to search for the password manually?
Please do, I have a form to fill with my first name, last name, phone, mailaccount and extra information every day. I defined these details in advanced-strings and want to reference them during the auto fill in.
Hi, you can reference custom string fields in auto-type by using {S:FieldName} for example. Detailed documentation on that can be found here on the official KeePass website: keepass.info/help/base/fieldrefs.html Hopefully that will help you with your use case for now. If not, I will make a video tutorial in the future. Not sure when though as my time is currently limited a lot by my main job due to Black Friday events, other videos in the pipeline, etc. If you have any further questions, please just let me know and I'll try to help you here as much as I can!
Since both software is open source and you already have everything set up with Bitwarden, a switch is only necessary if you are missing any features in Bitwarden that might be available in KeePass. I haven't used Bitwarden myself though, so I can't really compare both. Sorry!
@@ranjitdutta9167 I think you can make KeePass a little more secure using the composite master key method I have explained in the video. But I made a quick research and couldn't find anything negative on Bitwarden's security so this might not be necessary for you.
Hi. Great video 👍 I'm finally moving to keepass and it's going great. I mean it was great with windows and Android and my last item is Chromebook. I've done it with yubikey challenge response and can't make it work on Chromebook. Do you guys know how to do it? Thanks
Haha. Wouldn't replacing "E" with "3" be a pretty standard part of bruteforce algorithms by now? Check out diceware. Use real random numbers to generate a six or more words then make up a memorable story using the words.
True. Nowadays this is something most bruteforce algorithms know already. If you want to create a good password, you shouldn't make it logical at all. Replace one e with a 7 and another one with a 4 for example and you'll be good to go. I might do another video just on how to create a strong master password and memorize it easily in the future.
Interestingly whenever there is a software update to KP 2 I update it and then the one I have on my D Drive which is a USB Drive gets automatically updated as well. The tech guys on the KeePass 2 Forums say that’s not supposed to happen, but it does. Not an easy program if your just starting out!
Perhaps your shortcuts are linked to that specific installation on the D drive and not your local one. Try disconnecting your external drive before starting KeePass and if it doesn't work, you'll know its pointing to the external one for sure.
I haven't explained in detail why that is the case here, but you can read more about two-channel auto-type obfuscation (TCATO) here on the KeePass website keepass.info/help/v2/autotype_obfuscation.html where it says: "TCATO makes standard keyloggers useless. It uses the Windows clipboard to transfer parts of the auto-typed text into the target application. Keyloggers can see the Ctrl+V presses, but do not log the actual contents pasted from the clipboard. Clipboard spies don't work either, because only parts of the sensitive information is transferred on this way. Anyway, it's not perfectly secure (and unfortunately cannot be made by theory). None of the currently available keyloggers or clipboard spies can eavesdrop an obfuscated auto-type process, but it is theoretically possible to write a dedicated spy application that specializes on logging obfuscated auto-type." So as you can see, TCATO can help against keyloggers but a dedicated spy application may still log obfuscated data. I hope that helps everyone else who stumbles upon this question.
How do I improve my existing data base on my PC with all of the tools you have expained? Do I download completely new and start over, or is there a method that saves my existing Datebase and incorporates all of your recommendations?
You can just change the settings of your database. You don't need to start all over again. Things like adding a key file can happen even after you have created a database. Although I would of course suggest to always use a key file in the future, whenever you create a new database just to be extra safe.
I have a video on how to set up KeePassium, which is a port of KeePass for iOS devices. If you want to sync across your different hardware, you'll also find more helpful content in my KeePass playlist!
Great Video! I have a question about CTRL ALT A it brings up the right account but also shows 10 or 15 other log in accounts as well. How can I clean this up?
Hello, this is most likely happening because the title of the target window is being matched to data that is safed in your KeePass database. To clean this up, you'll have to remove any information that might lead to that matching. Hope that helps!
There might be plugins for that on the KeePass website. I am creating them manually though and don't feel like it is slowing me down. If you setup presets for your custom password generator inside of KeePass, it should be quite fast.
@@ValentinKossenko Thank you in this case I prefer the free version of Enpass which does it. I'm searching an alternative to Enpass only because Enpass does not fill passwords in case of Basic Authentication Dialogs .
A few points of clarification and caution for this otherwise excellent video:
@1:45
"First click here so that you can see your password"
Unless you have some obscure reason for revealing your password, you should never click to see it.
There are reasons why it is not normally visible, such as someone might be watching, or a spyware application (that you do not realize that you have) could be capturing screen images, or an office security camera might be able to read your screen, etc.
The host probably stated to click to view the password, for demonstration purposes. But he did not state his reason. So there might be viewers that do not recognize the security risk in revealing your password.
@2:19
Although the host's choice of a password for this demo is very good, it is not a good idea to replace the letter "e" with the number "3". Password cracking programs do this -- it is a popular rule. This type of replacement will slow down a password cracking program by, perhaps, 1/1000000th of a second. You should never do what is popular, when it comes to creating a password.
Replacing, for example, one "e" with "22" and another "e" with "#@" will be far, far harder to crack -- and with the length of the password used in this video, I would say that it would make the password impossible to crack.
Anyone interested in how to choose an extremely strong password should watch this video:
ruclips.net/video/3NjQ9b3pgIg/видео.html
The above video will explain how to choose a password that you can easily remember, yet be impossible for even a room full of computers to crack.
@3:29
"keyfiles"
This is a great idea. But know that if you lose that keyfile, you are screwed.
If your computer dies, and especially if your hard drive becomes unusable, you are done, kaput, finished.
Your only salvation is if you made a copy of your keyfile, and kept that copy on some other storage device. But you would not want to draw attention to that file. So name it something that will blend in -- like "appointments.txt" or "order#", etc.
Do not name the keyfile "database.key", as shown in this video.
Also, if you will store your keepass database on dropbox, or any other third party storage service, do not store your keyfile there, too. A backup of your keyfile should be stored on, for example, a flash drive. Even better, give a copy of your keyfile to a trusted family member that lives at a different location (do not e-mail it to them -- find a way to give them a copy that avoids sending it in the clear over the internet).
Giving them a copy of your keyfile will protect you in the event of a fire or a burglary. Your database will be on, perhaps, dropbox, and your parents/brother/sister/close friend/ will have a copy of your keyfile (and only the keyfile).
When you replace your failed computer with a new computer, dropbox will have your database, and you will retrieve your keyfile from wherever you made a copy, and you will be good to go.
@5:47
"recycle bin"
Folks, this is not the Windows recycle bin.
The recycle bin within the keepass program is independent of the recycle bin that comes with Windows.
The purpose of the keepass recycle bin is that if you mistakenly delete an entry from within your keepass database, keepass can restore that deleted entry (because it was not really deleted -- it was just marked as not to be visible). But if you tell keepass to empty its recycle bin, then it really will delete those "marked invisible" entries, and they will be gone, and irretrievable.
Excellent tutorial for an excellent password manager!
Thank you so much for taking the time to write all of this down. I have pinned this, so that others can benefit from your great addition to this comments section!
Great video and also great additions.
To create strong passwords I highly recommend watching these 2 videos about passwords from Computerphile:
How to Choose a Password - ruclips.net/video/3NjQ9b3pgIg/видео.html
Password Cracking- ruclips.net/video/7U-RbOKanYs/видео.html
Hi Frank, thanks a lot for your contribution. I highly appreciate it!
What would you recommend when websites ask us for our date of birth? Let say hackers gained access to someone's Facebook or Gmail account, would it be wise never to give a clear description about one's birth so that hackers won't be able to get a credit card in our names? Also I make sure I use alias names as well.
Thanks. The informations were very useful.
My husband made me watch this video and download the software. I think it's pretty awesome. I'm not really looking forward to redoing all 300+ passwords I have saved on my google account, but will feel more confident my data is safer! Thanks for the video!
Hello Andrea, thanks for your positive feedback, I really appreciate it!
You can import your passwords from google to keepass. You would need to tweak autotype for some but overall its not a so tedious. 🙂
For those wondering what the custom settings are involving the override default sequence for websites that require users to post their user name first and then it requires the user to post the password on a new page for the password later on, the sequence is this: {USERNAME}{ENTER}{DELAY 1000}{DELAY 1000}{PASSWORD}{ENTER} on the Auto-type tab for the "Override Default Sequence" option. It's useful to avoid manually copying and pasting such information on Gmail, Outlook, RUclips, etc.
You can optimize the code further by writing {DELAY 2000} instead. Other than that, this is exactly what you should be doing in such a case. Thanks for sharing! You can also only paste the password by pressing CTRL + ALT + SHIFT + A.
Maybe you could have mentioned that one can delete the default groups (General, Network etc.). But people will figure that out. Anyway this is one of the best overviews of Keepass I've come across so far. Straight down to the core and especially about the Auto-type function. I advanced to 2.x version of Keepass a couple of days ago and I'm still learning about the possibilities it offers. Thank you as well for recomendations regarding the general settings, I'll set it up as you showed us.
I'm glad it was helpful for you! Thanks for your comment.
Very well made tutorial for beginners with Keepass like myself. Thank you very much!😁
You are welcome. Thanks for your comment, I appreciate it!
Excellent Teacher , I learned a lot , so thank you very much and continue to make more videos like this ...
Hi Betty, really appreciate your positive feedback! Thanks a lot.
Great tutorial, well explained
Thanks!
Das hast Du super gemacht Valentin. Bleib wie Du bist. Respekt!
Wow, ich danke dir für das positive Feedback!
Finally switched to KeePass. Thanks for the in-depth tutorial.
You'll love it! Thanks for leaving a comment! 🙂
You go so quickly. How do you unzip the file once it's downloaded? I couldn't capture what you clicked on. Thank you
I use WinRar for unzipping. You can also use 7zip for that. :)
A keylogger software is not a virus. It can be part of a virus but on its own it a completely legal software/hardware.
This if of course correct, but because keyloggers don't offer any real benefits in most situations and instead introduce new security risks, I explained them that way. Thanks for your feedback!
8:15 in that list of generated sample passwords, some don't have [?] nor [!], some have only [?] and some only [!].
I thought that the inclusuin of [!?] means "must contain both characters in the generated password".
+1 and subscribed by the way excellent video!
Sorry, I just read your comment. I think adding these characters will only add them to the pool of characters to create passwords from. Some will have it, and some will not. If you want to make sure it is as unique as possible, add characters manually. I personally always add some random characters in between to make sure I actually make it random. Just so you know, computers can not actually create random passwords unless you give them some input. We do this in the video around 3:42 for the key file - where it says entropy collection. Hope that helps. Thanks for subscribing!
Thank you so much!! This was incredibly helpful!
You're welcome!
Hi Valentin, thanks for this wonderful tutorial. I'm still thinking how I can syn my passwords to different PCs (like work, friends and so on)
Do you use the portable keepass to sync the whole folder vis dropbox? So when using a PC of a friend you can just login to dropbox, download the portable files and have all your passwords after login with the masterpassword? So at the end you still have to remember the dropbox and masterpassword (and the keyfile) to use keepass everywhere?
Thanks for your help.
Jens
Hi Jens, this is exactly what I am doing to sync all my passwords. Don't forget to enable 2-factor-authentication on your Dropbox to make it as secure as possible! If you have any further questions, please let me know. I'll be glad to help! 🙂
Amazing, thank you for your time creating this great tutorial!
Welcome!
New subscriber here. I used keepass when I was working and not 5 years later am considering it again. I am a bit different. Automation is not high on my list but could be nice. I want to customize forms with privacy data on them. I haven’t downloaded keepass yet so I will look into that. Also on automation I have a few Linux boxes that I ssh into and automation might be not what I want there. Thanks for the video.
You're welcome! I'm always glad if I can help.
Thank you so much Valentin for your fantastic KeePass video series. Although there are many similar tutorials on RUclips, yours are much more comprehensive and practical. As someone who started using KeePass recently, your videos made it much easier to get up to speed. Great job!
Hey Rick, thank you so much for your feedback and the "Super Thanks". This is the first one I ever received and you will therefore have a special place in my heart for the rest of my life here on RUclips. If there's anything I can help with, please let me know. Cheers!
VK,
Thanks again for your help. I finally managed to get KeePass2, KeePass2 Android and Dropbox synced. Note that I gave up on Google Drive. While the process is not quite as easy as you describe I was able to create a DropBox account and redirect the PC side of KeePass2 from the Google Drive (that did not work) to DropBox. The data you sent yesterday from SourceForge was interesting, but still way over my head.
Roland
That sounds great, Roland! I'm glad you found the solution to the syncing issue!
my first comment is how does one enlarge the printing...it is too small for these old eyes!
Most operating systems have a scaling feature that should work with KeePass as well. 🤔
Very Helpful, learned allot. I've been using Keepass for over 10 years. I stay clear of the integration mostly because i feel its a security risk and I'm old school. JMO thx agn
You're welcome. Thank you so much for your comment!
" I stay clear of the integration mostly because i feel its a security risk and I'm old schoo" Good move
Thank you so much for this great video. Really appreciate your effort.
You're welcome, cheers!
Fantastic Tutorial.
Some bank websites disable copy/paste for username / password section. Any solution for such a situation. Image having to type a 30character password when copy/paste is not allowed.
Have you tried autofill? I didn't run into this problem so far, so I can't test it myself. Thanks for your feedback! 🙂
This tutorial finally made me to use keepass. Thanks man, really usefull video.
Great step in the right direction! So glad I could help you out! Thanks for leaving a comment! :)
Amazing tutorial. Very good explanation and examples. Thanks.
I highly appreciate your feedback, thanks!
This is awesome!!!. Thanks a lot 🙏😄
You're welcome!
The password isn't any stronger then using words separated by spaces as swapping letters with numbers are built into password library's
That is correct. This video is quite old and in my newer videos, I recommend to be even more random with your passwords. Any type of logic or convenience for easier remembering is usually something that will make your password weaker. But if your password is longer than 20 characters and not the most generic phrase in the world, it should still take quite a while to break. Using 2FA on top of that will probably make most of your accounts as safe as necessary.
Thank you!!! Great explanation. When you were typing your master password it's possible to see some of the keys you pressed on the keyboard. Although you have a key file so maybe it´s ok :)
Appreciate your feedback, thanks! I actually played a trick on the bad guys there, if you know what I mean. 😏
Valentine Sir, Excellent Video - Thank You! I appreciate your work in putting together this videos series on keePass. Excellent Work
Thank you so much, Randall! I highly appreciate your feedback and I am glad it was helpful for you!
Are you saving the KeePass executable files to Dropbox? Thanks for the video.
Yes I do, except for the key file, which sits on my local drives on all devices I own.
Thank you for this!! My new job asked me to use KeePass, and I didn't know how to get it to then fill in the password into the sites I was using, so thank you for explaining this to me so I can look a little less clueless tomorrow at work!
I'm really glad I was able to help you out! Thanks for watching!
Thank you for the tutorial!
Can you please help me?
I´m using a KeePass integration in "Remote Desktop Manager".
This works fine, however I have now got permission to work on a new server, and then I have a problem:
I cannot integrate Keepass anymore :(
I right-click on Local Data Source, and then then I choose "add", "add credentials entry".
Last time I did this, there was a Keepass-option, but it is totally gone now.
Can you please help?
I have tried to just duplicate o of the other keepass credentials, but it does not work.
This is coming from an IT guy, thank you for this video 🙏 excellent work and explanation
Glad you enjoyed it! Thanks for leaving a comment, highly appreciate it!
Excellent tutorial - Is there a version of KeePass that I can install on my Mac (macOS Mojave)? I have installed KeePassDroid on my Android phones and would like to sync them with my Mac.
I use KeePassXC on my Macbook Pro and will make a tutorial on that in the future. That version of KeePass is alright, but there are some things that vanilla KeePass does a lot better in my opinion and I'll talk about it in a future video. You could buy Crossover to run vanilla KeePass on macOS more or less "natively", but Crossover isn't very cheap, so it's up to you, whether you want to invest and use Crossover to run some more Windows apps because then it might very well be worth it for you!
@@ValentinKossenko Thank you for your reply.
I'm new to KeePass and found this video very helpful so thank you ! I'm not sure if I missed it but you talked about not saving your key pass database and your kdbx database in the same folder. What are the negative consequences of that ?
If you save both your keepass database and key file in your dropbox, you risk someone getting inside of your database. This way, all they need is your password. But if you save your key file separate from your keepass database, hackers will have a harder job to get to your passwords. I'd highly recommend to enable 2-factor authentication on your accounts as well.
@@ValentinKossenko I appreciate you taking the time to help out complete strangers. It says a lot about you. I'd like to ask you if you know why when I open Keepass2Android on my phone I have to manually hit "Synchronize Database" instead of it automatically downloading from Dropbox (which is what my wife's iPhone does).
Hi! I never had this problem with Keepass2Android so far so I'll have to test and see. If you follow the steps in my guides, the database should synchronize everytime you open it or make changes. Hope you can find a solution to your problem!
@@ValentinKossenko Ok. Yeah, I followed the steps but for some reason I still have to manually download. It's really no big deal though. It takes one second to do, lol. Thanks again for your time. I will be making a donation to the app as well.
Hi! Thank you for the video. If I were to change one of my existing accounts for a stronger password, I don't know how to do this with KeePass. Do I generate a random password, then copy paste it into the specific website, and then into the KP Database entry? That seems "unsafe" (due to copy-pasting). Any tips on how to now refresh all my existing, weak, passwords, to strong, randomized ones - using KeePass? Thank you for your help!
You can create a new random password, save the entry and then use auto type (password only) using CTRL + SHIFT + ALT + A to paste the password into the specific website. If you use TCATO (two channel auto type obfuscation) you should be pretty safe. 100% safety is impossible though, which is why you should always use 2 factor authentication to make your accounts as safe as possible.
@@ValentinKossenko Thank you for the reply! Appreciated :)
Thank you for the detailed walkthrough! Cheers!
You're welcome. Appreciate your feedback, thanks!
This is what i have been searching for
Glad it was helpful!
Great tutorial. Thank you for all the hard work!
Thanks for watching, appreciate it!
Great tutorial, I could have used this a decade ago! I'll only add that, for me, the Entry Advanced tab get used a lot. You can add strings and file attachments associated with the entry. These might include account, phone, PIN, card #s, security Q&As, etc. I use KeePass for so much more than passwords. Any information I want to securely encrypt, I can throw it in a KeePass database.
Yeah, the advanced tab is awesome. I do the same as I am too lazy to use a plugin with custom templates. Works absolutely fine for my needs! :)
I didn't see how to safe a keepass database with another computer. How is this done?
Hi, upload your entire keepass folder (except for the key file of that composite master key) to cloud storage like for example Dropbox and install it on every single machine you want to access your database from. You'll have to copy the key file using a usb stick or something else to stay on the safe side. If you still have any further questions, please let me know. :)
this video is incredibly helpful, thanks so much for your effort! just two questions: why did you choose the portable version and are there any big differences between the portable and the installable version?
Hi Anno, I choose the portable version because it doesn't leave any traces in your system and you can just copy it into your Dropbox for example to use it on another computer or laptop without installing KeePass. That way, I can also copy it on a USB stick if I know I will need to access my database on someone elses computer for example. There's many benefits to the portable version, but that's basically what it boils down to!
Thanks for wonderful video. I am new to Keepass, so a question, can keepass be used to store windows10 login credential on which keepass is installed? If yes how to use keepass to autotype password on windows login screen?
As far as I know, you can't do that, because KeePass only runs, once you are logged into your PC.
Hello! Why the portable vs. the standard download??
Because you can just upload the portable version to your Dropbox and use it on any PC.
Bro, thank you for sharing this tutorial. The way you explained everything was so clear and helpful, making it easy to understand and apply what I learned!
I'm glad it was helpful!
Thanks man! Pretty good explained
Thank you so much!
Hi, maybe you can make a New Video how to download any Plugins. I mean I know how to but other people may not.
And also show the people how one backs up Keepass 2.
That's a great idea. Thanks for your suggestion!
@@ValentinKossenko Hey why do they have a File Keepass 2 and a Program Keepass 2? Also whenever I download a Plugin on my main Database, it ALWAYS SYNCS with the same database backup on my usb drive before I even put my usb drive in! WEIRD I Know, but it just happens and I like it.
Quick question, is there any way to change the script on the autokey for the password so it can match the custom script for the username & password?
(wanted to make some delay but I can't see a single customization option)
Great explanation!!!! Keep going + thumbs up
Thanks a lot, will do my best!
Hey can I please know what laptop you use?
Hi, I am using a Dell XPS 15 9560 here in the best configuration. Core i7-7700HQ / 32GB RAM / 1TB SSD / GTX 1050. Hope that helps! :)
Can you also explain the advanced-string fileds option?
You can use them to save any type of additional information. Perhaps I'll do another video that goes more in depth!
very very good, thank you Valentin.
Thanks Roberto, I appreciate your feedback!
Very clear and detailed instruction. Thank you. I hope you have an instruction for Android also.
I do! You can find a video for Android devices on my channel. I have an entire playlist with KeePass content if you're interested!
So, I exported an un-encrypted csv file from my online pass mang, imported into keepass, created my database, deleted the csv file, and no more database....lmfao, wtf is this ?
Good question.. I never had anything like that happen to me previously. Hard to tell what actually caused this without knowing about every step in detail. I hope you were still able to solve the issue.
I'm into the Android version but this great tutorial took me to a broader level of options. Thanks!
I'm glad I could help. Thanks a lot for your feedback, Jack!
@@ValentinKossenko Thank you for your acknowledgment. I've just subscribed.
Thanks for the tutorial!
Thanks for your comment. Appreciated!
very cool tool, thank you!
You're welcome!
awesome . so I would like to know how to part it truly portable. From windows to android phone
I have a dedicated tutorial for Android on my channel. That should help!
Hi, I followed your videos to set up Keepass and upload all passwords. And installed all plug-ins as well. So far so good. I moved keepass application to dropbox and then tried to set up google extension. The extension does not seem to connect to database. Can you help here please ? Thanks
What extension are you talking about? I don't recommend using any extension outside of KeePass. Use the auto-type feature with two-channel auto type obfuscation instead.
@@ValentinKossenko I meant the chrome extenstion. For using it on the browser
Great, man !! Thx
Thanks a lot for your feedback!
I very much want the step by step guide that is not a video. Is there such a thing? When you say it is below, I'll be darned if I can find it. My method of learning is by reading and not watching a very, very fast video.
I have many unsuccessful hours with various plugins and adaptations of KeePass but cannot get it to sync with Google Drive, so it will also not correctly sync with my android using KeePass2 Android. Can you help? Using KPSync it looks like it is syncing; the time stamp updates but content does not. I'm enthused that you have found a way to work with Google Drive without plugins, though maybe your experience is all from prior to Google upping security on Drive.
Ron
Right now, I don't offer any step by step guide in form of text. This video is everything I have for you guys. I will try my best to help you with issues though. I think your problem might be solved by following the steps here: github.com/PhilippC/keepass2android/issues/1833 If you need any further assistance, please let me know! You could also use Dropbox instead, which also offers 2 factor authentication and currently doesn't seem to have any security problems with the KeePass2Android app. The dev already reached out to the Google team afaik but they probably haven't responded yet.
This video convinced me to change from Password Safe to Keepass.
Hope you enjoy KeePass as much as I do. Thanks for your comment!
Plot twist: Your life will change for the better after watching this video
This is so true! 😍
I skip the file requirement, I find it hard to deal with fragmenting the access. I already have a long and complex password. If I misplace a USB drive with the keyfile, or someone else does, then I’d be at square one. And I don’t need nor want security to inconvenience my day.
You can put the keyfile on multiple USB sticks as a backup. Since a key file can be anything you want, you could also just use a song, image, etc. and upload to a random cloud storage and no one will ever know that it is tied to your password manager. Hope that helps and doesn't overcomplicate things for you!
One question from me. How should I configure the entry if the 'Website' login is via a Google account How is the easy way to write that I should login with Google?
You could add some additional tags to that Google entry so that it also appears on other websites for you!
How to setup and save login and password to use with Auto-Type when you have multiple user's login for the same Website (Using single Database)?
If multiple entries for the same application / url are found, you will be prompted to choose one of the entries. I'd suggest to always enable the global auto-type entry selection dialog under settings though. This way, you can make sure to always select the right entry before the auto-type sequence is started.
Remember to choose things correctly with the language you're using for the auto-type function guys, windows search recognize apps if you type the names in english but KeePass will not
Good point!
Hello from New York City! How to add a key file login feature to a Keepass file that is already using only master password? Thank you for your informative video.
Hi, click on File - Change Master Key and then follow this video starting at about 5:20 ruclips.net/video/mbZU_NEtXNU/видео.html. Hope that helps!
Great info
Glad it was helpful for you!
i really late to secure my data and yup now i have only preventing whatever i do (also encrypting data information using software like that)
allright thanks for sharing this guide, its helpful for me to understand every features
I'm glad. I have many more tutorials planned for KeePass in the near future with an overview of everything you should be doing. They're coming out very soon, so stay tuned for that! :)
Very useful, thanks for you time,
You're welcome! :)
gracias por tu tiempo excelente información y contenido...mil gracias wow
Glad it was helpful for you!
How do you get KeePass on Chromebook?
Awesome video
Thanks
I'm glad I was able to help!
Hey what did you use the title for Gmail, because I tried the Gmail, google and URL as title but didn't work, Keepass didn't show nothing in auto type entry selection board. could you tell us. By the way excellent explanation I switched to Keepass from Lastpass permanently
Great video, sure could use an updating though, hint, hint....
Hi, what do you mean? I saw that KeePass got an update (1.4), but I wouldn't recommend using that version to be honest as it is quite limited. The 2.x is a lot more versatile in many regards.
Can you use 1 software on multiple family computers? Like share passwords, how?
I will soon release a new video to explain how to sync the KeePass database even more securely. This could be especially interesting for families that want to keep their main database locally in their home network and just sync between devices from there. Stay tuned!
I have like 3 entry now but auto-type selection shows nothing, zero
10:18 keylogger writes all the keys, including arrow buttons. so it will look like uB8fU6zKgek or something like this, restoring the sequence is not difficult no matter the order. I don't know how can you move the cursor without sending arrow keycodes... or maybe I didn't get why it suppose to work?
It's supposed to protect you from simple keyloggers without clipboard detection. If a virus can do both, you are correct and the method here won't help.
@@ValentinKossenko I'm not a security professional. I think clipboard access and keylogging can be done on windows without admin permissions, since otherwise you would have UAC all the time you copy something from clipboard. KeePassXC doesn't even have this option, I think it's quite useless.
If your machine is so infected there is nothing you can do, apart of maybe using hardware keys, but even that is questionable, the attacker can just insert himself in the middle of your traffic and do whatever he wants with your machine.
Hello Valentin!
I have been using Bitwarden until now, but now I dared to try the KeePass password management program! :) The installation was easy with the help of your RUclips video, and I installed KeePass on a USB stick. Does KeePass now also work on Android if I connect it with a USB-A to USB-C connector to my Android phone? I use the KeeForm add-on which automatically adds the password and username to the login window, so I don't think the add-ons work on Android? Is there an add-on to KeePass that would scan passwords in real time and notify you by e-mail if the password has been leaked during a data breach? For example, 1Password has this feature, and I think it would be absolutely essential. Is it possible to protect KeePass with 2FA authentication? I already removed Bitwarden from my Brave browser and from today I only use KeePass! :) Thank you!
Hi Matias,
you will need another KeePass version for your Android smartphone. I can recommend KeePass2Android and have a video on how to set it up, that you can find on my channel over here ruclips.net/video/clNswHCG9So/видео.html.
The KeeForm add-on will unfortunately not work on your smartphone as it was made for vanilla KeePass only. Not sure about real time scanning, but what I can suggest is offline checking for breaches manually from time to time. You can find a detailed explanation in my plugin overview for KeePass over here ruclips.net/video/5JD6bBDCs2A/видео.html
You can protect your KeePass database with a key file for 2FA, but you can also setup TOTP with a plugin. I haven't personally used a plugin for that, but you should find one by the original developer of vanilla KeePass over on the plugin page keepass.info/plugins.html
KeePass is great as you are 100% in charge of your data and you don't need to upload or sync your passwords if you don't want to. Online based password managers are a lot less secure in that regard as they are often attacked by hackers and leaks can occur. Good choice with KeePass here and good luck!
If you have any further questions, please let me know and I'll try my best to help you out!
@@ValentinKossenko I have now successfully installed KeePass on my Windows 11 computer, and I also installed the Keepass2Android app on my smartphone, and it's really good, thanks for your recommendation! :) I have a question regarding the Windows version of KeePass. Is there any way that if I want to log in to Facebook, for example, that KeePass would automatically suggest a Facebook password for me so that I don't always have to use the KeePass search function to search for the password manually?
Does KeePass needs to be open or at least running in the background to the Ctrl+Alt+A to work ?
Yes, KeePass needs to be running as you will access your database passwords with the auto-type feature.
Please do, I have a form to fill with my first name, last name, phone, mailaccount and extra information every day. I defined these details in advanced-strings and want to reference them during the auto fill in.
Hi, you can reference custom string fields in auto-type by using {S:FieldName} for example. Detailed documentation on that can be found here on the official KeePass website: keepass.info/help/base/fieldrefs.html Hopefully that will help you with your use case for now. If not, I will make a video tutorial in the future. Not sure when though as my time is currently limited a lot by my main job due to Black Friday events, other videos in the pipeline, etc. If you have any further questions, please just let me know and I'll try to help you here as much as I can!
Bro, this tutorial is rock solid, great thanks! Thanks Subbed;
Appreeesh! Thanks, Jonathan! 😊 Welcome on board! ⚓
@@ValentinKossenko nice one 😊 have a great weekend buddy! keep it up you'll be on 100k subs soon!
Hello, I created database without keyfile, how to add it to existing databese please?
I explain how to do that in my how to sync KeePass across multiple devices video here around 2:04: ruclips.net/video/mbZU_NEtXNU/видео.html
Brillient, very good
Please help me. I am using Bitwarden because it is open source. Is it safe or should I switch to Keepass.
Since both software is open source and you already have everything set up with Bitwarden, a switch is only necessary if you are missing any features in Bitwarden that might be available in KeePass. I haven't used Bitwarden myself though, so I can't really compare both. Sorry!
@@ValentinKossenko thnx for your reply. I was not worried about features but of the security of my passwords. thnx anyways
@@ranjitdutta9167 I think you can make KeePass a little more secure using the composite master key method I have explained in the video. But I made a quick research and couldn't find anything negative on Bitwarden's security so this might not be necessary for you.
@@ValentinKossenko thank you so much for your help :)
Excellent work and explanation, thank you !!
You're welcome! Glad it was helpful.
Hi. Great video 👍 I'm finally moving to keepass and it's going great. I mean it was great with windows and Android and my last item is Chromebook. I've done it with yubikey challenge response and can't make it work on Chromebook. Do you guys know how to do it? Thanks
Hi, I currently don't use a YubiKey, so I'm sad I can't help. Sorry!
Haha. Wouldn't replacing "E" with "3" be a pretty standard part of bruteforce algorithms by now? Check out diceware. Use real random numbers to generate a six or more words then make up a memorable story using the words.
True. Nowadays this is something most bruteforce algorithms know already. If you want to create a good password, you shouldn't make it logical at all. Replace one e with a 7 and another one with a 4 for example and you'll be good to go. I might do another video just on how to create a strong master password and memorize it easily in the future.
Interestingly whenever there is a software update to KP 2 I update it and then the one I have on my D Drive which is a USB Drive gets automatically updated as well.
The tech guys on the KeePass 2 Forums say that’s not supposed to happen, but it does.
Not an easy program if your just starting out!
Perhaps your shortcuts are linked to that specific installation on the D drive and not your local one. Try disconnecting your external drive before starting KeePass and if it doesn't work, you'll know its pointing to the external one for sure.
Hey, can keyloggers log arrow keys aswell?
11:35
Technically they can. But the two-channel auto-type obfuscation should still help with that.
I haven't explained in detail why that is the case here, but you can read more about two-channel auto-type obfuscation (TCATO) here on the KeePass website keepass.info/help/v2/autotype_obfuscation.html where it says:
"TCATO makes standard keyloggers useless. It uses the Windows clipboard to transfer parts of the auto-typed text into the target application. Keyloggers can see the Ctrl+V presses, but do not log the actual contents pasted from the clipboard.
Clipboard spies don't work either, because only parts of the sensitive information is transferred on this way.
Anyway, it's not perfectly secure (and unfortunately cannot be made by theory). None of the currently available keyloggers or clipboard spies can eavesdrop an obfuscated auto-type process, but it is theoretically possible to write a dedicated spy application that specializes on logging obfuscated auto-type."
So as you can see, TCATO can help against keyloggers but a dedicated spy application may still log obfuscated data. I hope that helps everyone else who stumbles upon this question.
Very good tutorial, many thanks (and such a great software)!
You're welcome! Glad it was helpful for you.
Thank you so much for this detailed tutorial!
You're very welcome!
Thank you very much for this useful video!
I'm glad it was helpful for you!
Wow, ein tolles Video. Vielen Dank dafür! Dein Englisch ist wirklich beneidenswert als nicht-Muttersprachler - Daumen hoch!
Vielen lieben Dank für deinen Kommentar, Bjoern! :)
Hi sir I need help to share into shared path or all user accessible path thanks
You mean you want to make the KeePass database accessible for multiple people? Please explain further what you mean and I might be able to help.
How do I improve my existing data base on my PC with all of the tools you have
expained? Do I download completely new and start over, or is there a method that saves my
existing Datebase and incorporates all of your recommendations?
You can just change the settings of your database. You don't need to start all over again. Things like adding a key file can happen even after you have created a database. Although I would of course suggest to always use a key file in the future, whenever you create a new database just to be extra safe.
Great video. How to share between iPhone and windows?
I have a video on how to set up KeePassium, which is a port of KeePass for iOS devices. If you want to sync across your different hardware, you'll also find more helpful content in my KeePass playlist!
Great Video! I have a question about CTRL ALT A it brings up the right account but also shows 10 or 15 other log in accounts as well. How can I clean this up?
Hello, this is most likely happening because the title of the target window is being matched to data that is safed in your KeePass database. To clean this up, you'll have to remove any information that might lead to that matching. Hope that helps!
Great tutorial. Thanks!
You're welcome!
Is there any way to save data (user/password/url) in keepass when I login for the first time in a site ? Or should I enter each site manually ?
There might be plugins for that on the KeePass website. I am creating them manually though and don't feel like it is slowing me down. If you setup presets for your custom password generator inside of KeePass, it should be quite fast.
@@ValentinKossenko Thank you in this case I prefer the free version of Enpass which does it. I'm searching an alternative to Enpass only because Enpass does not fill passwords in case of Basic Authentication Dialogs .
BTW after a fast test also Keepass does not seem able to fill password in case of login using Basic Authentication Dialogs .