The only catch is that you must first open KeePass and unlock your database. Now whenever you key in your shortcut keyboard combo it will tell KeePass to auto-type your configured username/password/whatever you setup in KeePass. For the command enter the following: mono /usr/lib/keepass2/KeePass.exe -auto-type The process for this will differ depending on which distribution you’re running but it’s usually under the Keyboard settings. So to find out where the real executable run: cat /usr/bin/keepass2Įxec /usr/bin/cli /usr/lib/keepass2/KeePass.exe the program itself is actually located at /usr/lib/keepass2/KeePass.exe. This file is actually not the program itself but a script that bootstraps the program. On my system this returns /usr/bin/keepass2. The easiest way to do this is to run: which keepass2 Next find out where the keepass2 executable is installed on your system On Debian/Ubuntu/etc simply run: sudo apt-get install xdotoolĢ. Thankfully its also very easy to make work on Linux.ġ. This is super handy and something that is sadly missing by default on Linux. Requires effort to maintain your configuration.If you’ve used KeePass on Windows you may be very attached to its auto-type feature, where with a single key-combo press the application with magically type your user name and password into the website or application you’re trying to use. Supports all custom strings, TOTP codes, etc.įragile: configuration easily broken by website changes. Optional keylogger protection (but not immune) No additional software or plugins required (although made easier to configure by software or plugins) When properly configured, works everywhere (ok, minor exception for non-modal dialogs that do not have a window title of any kind) Not a big deal as I prefer the extra peace of mind that even if someone gets into my computer while I'm logged in, they. Though, not an issue with the extension, the fact that KeepassXC locks the databases after some idle time makes it less convenient, but more secure. Was once possible to do entirely in a browser! Works well on macOS Catalina with Edge, Chrome, and Firefox. Vulnerable to clipboard sniffers, which are easier than keyloggers to implement or be affected by. No additional software, plugins, or configuration required for user/password may require a plugin for custom fieldsĭoesn't work on sites that disable paste (actually frustratingly common on banks) or get fancy with form JavaScript Works almost everywhere (more places than anything other than full autotype), only failing on sites that hide the login form when focus changes No phishing protection of any kind, not even the window title must match It's a hassle to launch KeePass, do a manual search, and manually fill each field No additional software, plugins, or configuration requiredĬompletely manual process. Immune to keyloggers (I think, not really sure how it works under the hood) Works almost everywhere, except sites that get fancy with form JavaScript or hide the login form when focus changes Increased attack surface: now you need to worry about the security of the browser plugin.and weaknesses in the browser plugin are often vulnerable to remote attack, unlike KeePass itself Usually no support for custom strings/TOTP codes If it picks the wrong field or fails to fill something there may be nothing you can do to fix it May require extra setup (to be fair, often less than autotype) Works in fewer places, easily thwarted by things like multi-page login forms Phishing protection (won't fill the wrong website) Only fill the correct fields (usually, sometimes a password goes in a PIN field or a username in a secret question field or something, but that's rare) I'm only familiar with KeePass itself rather than KeePassXC so I'll go with that. There are a few alternatives and they all have tradeoffs. Unfortunately you have can't use the browser plugin in some cases (like a login box in a game window or whatever) so I usually just use Ctrl-B and Ctrl-C for these as it seems much simpler and less error-prone, even if I find it a bit less efficient. Not worth it IMO.īarring you doing something silly (selecting the wrong fields), from a security standpoint auto-type is safe as it uses multiple methods to avoid keystroke detection. I don't know why KeePass defaults to auto-submitting with ENTER, since it seems like a design oversight that has a real chance of compromising security for a tiny, miniscule and insignificant amount of extra convenience. ![]() That way, you will have to click submit yourself. That said, you can save yourself a lot of headaches by configuring auto-type to not press ENTER at the end of it's typing. If it gets it wrong, you can fix it ONCE and it will be fixed forever. Occasionally it might detect incorrect fields, but it's very rare and you always have a chance to see what it types before you click submit. The browser plugin is MUCH safer because it can properly detect fields for you and will only input on the correct page.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |