KeeWeb: KeePass compatible password manager


KeeWeb is a beautifully designed multi-platform app that works with KeePass database files. KeeWeb is written in electron and comes as a standalone desktop app or online/offline web apps. For this article we will concentrate on the desktop app. We have our reservations about cloud based password managers. Continue reading KeeWeb: KeePass compatible password manager

QtPass: Qt GUI for pass


We explored pass, a multi-platform powerful command-line password manager in one of our earlier articles. pass is more or less a standard on Unix systems but the cli may deter users migrating from a different platform from using it. Here’s the good news – pass recently got a QT based GUI front-end, thanks to QtPass. Continue reading QtPass: Qt GUI for pass

KeeFarce: extract KeePass secrets at runtime

security_compWe wrote about the risks of using cloud based password managers in an earlier article. To speak the truth, password managers installed locally on your system are not safe either, IF the system is compromised. KeeFarce is a new tool that proves the point. However, the principles of KeeFarce work only when you are allowing it to run on your system. Continue reading KeeFarce: extract KeePass secrets at runtime

Steel: cmdline password manager

terminalSteel is a purely cmdline sqlite based password manager. Though my favourite pick for a password manager is KeePassX (v2), a terminal based utility is always welcome. Steel works offline and hence there’s little chance of someone else snooping into your password unless they have physical access to your system. Continue reading Steel: cmdline password manager

Cloud based password managers can’t be secure

emailWe are living in the age of online or cloud services. There are thousands of them doing interesting stuff. Recently I came across some websites to store passwords and other secure information. I am alarmed. While it may seem like a good idea that you can access your secrets from anywhere behind a secure service, there are extreme risks. Continue reading Cloud based password managers can’t be secure

FPM2: another Linux password manager

fpm_compAs a password manager FPM2 has both its pros and cons. Its features include:

  • Lightweight
  • Passwords are encrypted with AES-256 encryption
  • Supports using a key file for enhanced security
  • Supports pre-defined actions like copy password or username to clipboard, primary selection
  • Allows execution of user-defined actions like launch URL in preferred browser etc.
  • Categories
  • Search on the go
  • Auto-minimize of lock after preset time


  • Has port just for Android other than Linux
  • Export the entries as XML (without password) but cannot export as encrypted file. So it’s difficult to save the DB separately. It also makes it difficult to migrate to a different system.

Webpage: FPM2

KeePassX: multiplatform password vault

keepassx_compIf you find it hard to remember all your passwords the password manager KeePassX will help you out. You can leave all your passwords behind a master generated key file and use them when you need them. No need to memorize anything. Works on Linux, Windows, Mac. Available in synaptic on Ubuntu. It’s a very popular and handy app on Linux as well. You can create different groups and choose separate icons for each group. Search is also supported. The database is always encrypted either with AES (alias Rijndael) or Twofish encryption algorithm using a 256 bit key.

It also has a very strong password generator based on the algorithm you choose if you cannot come up with a complex one yourself.

To install on Ubuntu:

$ sudo apt-get install keepassx

OR you can install the latest version using:

$ sudo add-apt-repository ppa:keepassx/daily
$ sudo apt-get update
$ sudo apt-get install keepassx

Note that If you have a database file from the older version of KeePassX you need to import it into KeePassX2.

Website: KeePassX