I've tried and tested many password managers before. I never settled on any of them because they had too many bells and whistles. They were all too heavy and full of useless features.
That was until earlier today when I came across a great little password manager called KeePass. It was love at first sight and I've already transferred all my passwords...
- It's light-weight and fits nicely on your USB-stick
- It's very easy to use, no non-sense
and best of all... - It's an open-source project, meaning it's FREE and it won't be long before more plugins become available.
KeePass has import/export functions built-in and there are plugins for more specific file formats. But I found these to be unreliable and unstable. One plugin promises to convert Firefox Password files (exported with Firefox Password Exporter) but it requires additional software and some technical know-how in order to work.
That is why I spent a little time this afternoon coding a nice and easy-to-use dumb-proof little Firefox to KeePass converter and in my opinion it is, at the moment, the easiest way to transfer your passwords from Firefox to KeePass:
- Export your Firefox passwords into an XML file using Firefox Password Exporter.
- Open the exported XML file in notepad.
- Copy and paste the contents of the file in the field provided here.
- Download the converted file in KeePass CSV format.
- Open KeePass and go to File > Import From > CSV File
- Point to the download file and click 'Open'
5 comments:
Hmmm... Isn't it a little dodgy to ask people to upload a file containing all of their passwords to your server? Presuming you are trustworthy and aren't doing anything dodgy with the data, it's still getting sent across the internets twice in plain text... I wouldn't recommend anyone to use this, maybe you could offer the PHP file for download and local use instead?
That is a very good point indeed. But let me point out (as I should have) that no data is stored on the server at any point.
The actual conversion happens on your machine using Javascript and the contents of the file are not uploaded to my server.
The content is only uploaded when you click on the 'download' button. This is only used to produce the file download dialog, which can't be done in Javascript.
The alternative would be to provide instructions on how to copy and paste the converted text into a CSV file manually, using the write encoding. This way would ensure that no information related to the passwords is ever uploaded.
This in my opinion would defeat the purpose of the tool, so I will...
1. add a warning whenever any sensitive information is uploaded to the server (ie.: when user clicks download button)
2. Provide a downloaded version of the script, so one can use it on their own server. (I made it in ASP but a PHP conversion would be very simple)
Thanks for the feedback.
I just used your scripty-importer-exporter thing, and it's a model of ease; i *did* have to study it for a moment, as I know next-to-nothing about html, or xml. But anybody can cut-and-paste, right?
Thanks again, for an *amazing* tool- I've been wondering how to get my passwords out of the browser forever!
I had the exact same problem which is why I created the tool. I'm glad it helped...
Found you from your comment on Lifehacker's article about KeyPass and found your routine to transfer Firefox passwords into KeyPass simple and straightforward to use.
Many thanks for generously helping the community.
kudos+1 :)
Post a Comment