Slashdot Mirror

← Back to Stories (view on slashdot.org)

LastPass Makes Password Management Free Across All Of Your PCs, Tablets and Smartphones (cnet.com)

Posted by msmash on from the free-stuff dept.

LastPass on Wednesday announced that its popular password manager will now be free for all to use. LastPass previously charged a fee of $12 per year to sync passwords across multiple devices, such as a computer, tablet or phone. From a report on CNET: To entice newcomers, the service allowed you to access select features for free on either the web or on a mobile device, but syncing between the two required a premium membership. Not anymore -- that service is now free. LastPass is one of the best known and most trusted password managers. Its main purpose is to store all of your passwords in an encrypted vault in the cloud. The vault can only be opened using a master password that only you know. LastPass doesn't store the master password or have access to it, which means even if its servers were to be breached, your precious passwords would remain encrypted and protected.

4 of 234 comments (clear)

  1. Still charging for two factor support by Froze · · Score: 1, Interesting

    Which is why I still don't use it. If they really wanted to bolster security then MFA should really be standard, IMHO.

    I will just leave this here...
    http://keepass.info/help/kb/yu...

    --
    -- The morphemes of your disquisition are ascertainable, but they have eschewed an ambit of transpicuous exposition.
  2. Why? by AmiMoJo · · Score: 4, Interesting

    Can someone explain why I would want to have Lastpass hold the keys to my kingdom when I could just use a trusted, open source option like Keepass with a private server or free account on any number of cloud storage services? Browser plug-ins aren't exactly known for their great security.

    --
    const int one = 65536; (Silvermoon, Texture.cs)
    SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
  3. Re:A Master Password.... by LiENUS · · Score: 2, Interesting

    Since LastPass is open source whats your complaint?
    https://github.com/lastpass/la...

  4. Re:A Master Password.... by kevmeister · · Score: 4, Interesting

    Calling anyone who disagrees, especially when they point out that you are wrong, a "shill" is just the same as any unsupported BS from a presidential candidate. Null content.

    Several years ago I had the job of evaluating LastPass for $DAY_JOB. I tested it by capturing the data uploaded to the network and confirmed that it was AES encrypted using my password on my system and the data was all encrypted before leaving my system. the master password was never transmitted in any form that I could find. No traffic was generated to/from any other port or location.

    While it is true that things might have changed since then, the server remains open source and you can confirm that it does not ever touch the master password in any form. More importantly, the system is heavily examined on a continuing basis by security researchers and, while vulnerabilities have been found, reported, and fixed, there has never been any question of the master password leaving the client.

    With well over 100 unique, random, long passwords, some only used once or twice a year, I really lack other options than a password vault in a world where accounts might need to be accessed from a desktop, two laptops, and two phones running six OSes (2 VMs and one dual boot).

    --
    Kevin Oberman, Network Engineer, Retired