What are /r/strongbox's favorite Products & Services?

From 3.5 billion Reddit comments

No worries! Glad it's all sorted out and thank you for the kind words on the app. :) Will of course appreciate your support with the Pro version.

Cheers,

-Mark (Strongbox dev)

Hi there, I'm guessing it's a KeePass database?

You didn't by any chance delete the Strongbox folder on iCloud did you? There's a FAQ on that here:

https://strongboxsafe.com/hrf_faq/i-deleted-my-icloud-strongbox-folder-and-now-i-cant-create-new-icloud-database/

Since Strongbox stores everything in a KeePass2 database, you can install KeePassXC, open your database with it and use the KeePassXC-Browser add-on for Firefox.

My initial thoughts after 5 minutes:

• overall it looks very nice/macOS-like, I love that
• initial view needs more display space compared to the old UI
  • Hiding username and URL from the list view, you can achieve similar screen space requirements as with the old UI
• I love the "xxx copied" animation!
• I love the grouping of URLs from the main URL field and the KP2A_URL fields - that's a nice little detail!
• tags in the details sidebar appear as black text on blue background for me (Auto day/night switching, currently in day mode)
• Taglist on the left: Subtags should appear as nested tags, e.g. Parent/Sub1 and Parent/Sub2 should appear like a folder Parent with 2 entries Sub1 and Sub2 (internally, it already seems to work this way as clicking Parent shows all records from Parent/Sub1 and Parent/Sub2)
  • I'd love an option to have tag Parent only show items that have Parent as a tag, i.e. ignore sub-tags (Parent/Sub1) - maybe do this as an easy-to-reach toggle as both variants are useful
• a combined Finder-like view would be nice, i.e. have folder structure and elements in the same list similar to the current UI - so I can hide the left sidebar (but that's probably only withdrawal from the old UI - give me 5 more minutes and I won't want this anymore)
• maybe have an option to show modified timestamps as "xx days/weeks/months/years ago" instead of the exact date and time
• I'd love a "Copy field reference" in the action menu on fields to copy the internal reference ({REF:P@I:1234}) - maybe only when holding the Option key?
• my TouchBar looks very empty when using Strongbox, I'd love buttons for e.g. "Open URL", "Copy Username" and "Copy Password"

Great work! This will be my default UI from now on.

But interestingly KeePassium has full support for pCloud on their iOS App. Why is that so?

And how are they doing it without API provide by pCloud.

https://keepassium.com/articles/supported-sync-sources/

Thanks u/Aikido-girl!

Yes, so using a physical hardware key like a YubiKey is a Pro feature on both iOS and macOS. If you drop your Pro status, then I'm afraid yes, you'll lose the ability to use a physical hardware key with Strongbox.

However, the "Virtual Hardware Key" option is still available to all users and will get you out of any sort of emergency situation. You can read more about those here:

https://strongboxsafe.com/updates/virtual-hardware-keys/

Only on iOS at the moment, but they are also coming to macOS.

After installing, go to System Preferences --> Extensions, find "Password AutoFill" in the left list and enable "Strongbox".

In Strongbox, open your database, go to Database --> Database settings... and there, on the "AutoFill"-tab, enable AutoFill for that database and configure the other options to your likings.

Also make sure you've enabled "Username and Passwords" auto-fill in Safari Preferences.

Here's the official documentation about this: https://strongboxsafe.com/support/#reamaze#0#/kb/how-to-guide/how-to-autofill-on-macos

It'll be great once Strongbox supports this functionality. In the meantime, I use the Custom Icon Dashboarder plugin for KeePass 2.x.

Instructions for how to install KeePass 2.x plugins: https://keepass.info/help/v2/plugins.html

Once you have the plugin setup, the basic steps are:

• Copy/sync your database from Strongbox to KeePass.
• Open the Custom Icon Dashboard plugin within KeePass.
• On the "All Icons" tab, sort by #Entry.
• Check all the icons where #Entry = 0.
• In the "Choose an action" drop-down, select Remove.
• Click the "Start" button next to drop-down.
• Close the plugin and save your database.
• Copy/sync your database from KeePass back to Strongbox.

It's a little tedious, but not bad once you get used to the process. Hope this helps!

I deleted my comment because I realized later that you probably already tried. However for you can't open you db with strongbox, you could try KeePass's synchronization instead of directly sync the local database on windows.

Yeah, I have heard of other reports of issues like this with SMB connections. Since you're using Synology you could use SFTP or WebDAV which are rock solid:

https://strongboxsafe.com/updates/syncing-with-synology-nas/

Hi there, yes it does. We use the same mechanism for storing all these important/critical secrets and you can read more about that here.

As to best practices, the answers will vary depending on your threat model and opinions vary on this. The fact that you're using a Password Manager at all is a big step up. Using a format like KeePass and managing where you store the database yourself is another leap.

You could do things like host the database yourself on an SFTP server/WebDAV server or just store it locally on device if you're concerned about some kind of government/hacker having access to your database. Add a Key File or YubiKey as a second factor. Each of these steps has trade-offs usually in terms of convenience. Using something like Face ID or a PIN Code as convenience unlock is also a risk, but usually the trade off is worth it for most people. But also, typing your master password in in view of any say security cameras is another (possibly worse) risk. There's a lot of factors here in terms of operational security...

Personally I use my own SFTP server and Face ID, I don't use a Key File or YubiKey. I feel this is a great level of security for myself. I'm not a dissident activist under mortal threat from a tyranical regime, or a whistleblower worried about the NSA though...

In short, it really depends on what your threat model is. Hope that helps.

Hey! Each browser has a different way of exporting passwords (you can usually find steps on how to do it on support pages of the specific browser).

Once exported, you can import them directly into the KeePass database, please check out the Import/Export section of our website - https://strongboxsafe.com/support/#reamaze#0#/kb/migration-and-import-slash-export

After that, you should be able to see them in Strongbox on iOS.

There are a couple of ways that help/ameliorate this:

- Use the AutoFill Wormhole option

- Use Touch ID or Watch Unlock to speed things up

The Wormhole works if your database is already unlocked in the background. You can read more about that here:

https://strongboxsafe.com/updates/macos-big-sur-autofill/

Your second question is a popular one too, and we don't know of anyway to disable the Keychain prompts on MacOS without disabling the entire AutoFill feature. This just doesn't seem possible yet. You can do this on iOS but not on Mac so we're hoping Apple will fix this.

Hi, to get Safari AutoFill working on you iPhone just follow the instructions below:

https://strongboxsafe.com/support/#reamaze#0#/kb/faqs/how-do-i-use-autofill-on-ios

Should work well for you.

Do you know if they happen to offer an SDK or API for developers to access this? The last time I checked they didn't and I can't see anything on their site to indicate they do.

Without an API/SDK there's no way to integrate with them natively.

Alternatively, do they support WebDAV or SFTP? These can be used instead also by Strongbox, but I can't seem to see if they support these either.

Unfortunately, that only leaves one option, the iOS Files app, and it looks like their integration there is problematic :(

Sorry about that, perhaps you can raise this with them, ask them if they have any plans for an SDK/API or WebDAV/SFTP access.

It's the exact same feature wise as the regular Pro version you can upgrade to In-App, it's just that it works with Apple's Family Sharing program which requires an outright purchase, not an In App Purchase... See here. Hope that helps!

Hi, I don't believe it's possible to block apps from WiFi on iOS at the moment, though it is apparently possible to block cellular data...

There is an article on the possible network connections here:

https://strongboxsafe.com/support/#reamaze#0#/kb/security-and-privacy/what-possible-network-connections-can-strongbox-make

I'm not sure why Apple haven't enabled this kind of blocking feature though. Seems like a nice to have for security conscious users.

Hi, this should work for you, Dropbox is pretty good in both "Files" and "Native" sync. You don't say which method you're using above. Did you add via the "Files" method?

One thing to check if you're using Files is this:

https://strongboxsafe.com/support/#reamaze#0#/kb/troubleshooting-and-errors/my-ios-files-based-database-breaks-or-does-not-load-after-i-change-it-with-keepassxc

Otherwise check that your laptop Dropbox sync app actually fully syncs the changes to Dropbox before unlocking in Strongbox.

Strongbox doesn't support a KeeShare like feature, at least at the moment...

Have you seen the YubiKey Secret Workaround feature for YubiKey? This would allow you to open a YubiKey protected database on your iPad without using the actual YubiKey. That is something I know some people use to get around this sort of situation.

I'm not sure if that's suitable for you?

Hi there... There are quite a few ways to get your database onto your device so that it's a local only copy, rather than hosted/sync'ed to a cloud.

• Airdrop – This might open Strongbox immediately to Add, or you may have to select Strongbox from the list
• Transfer over Local Network – Tap ‘+’ > ‘Add Existing…’ > ‘Transfer Over Local Network’ and follow the instructions on screen.
• Email attachment (send an email to yourself with the database attached, and tap on the attachment, you’ll see an option to copy to Strongbox)
• iOS “Files” App – You can copy it directly into Strongbox’s local documents (iOS Files > On My iPhone > Strongbox)
• Apple File Sharing – You can copy directly to Strongbox’s local documents via File Sharing (e.g. Finder on latest Macs or via iTunes on older Macs and Windows).
• URL – If you host the file on a web server you can have Strongbox copy locally from that URL. (Tap ‘+’ > ‘Add Existing…’ > ‘Copy From URL’)

Remember, if you are using a local database, it is stored only on the device. Any loss of that device could then mean catastrophic data loss. Be sure to make regular backups.

There's a couple of handy FAQs here that might also be useful:

• How do I import a database for local device use only?
• How do I move my MiniKeePass database to Strongbox?

Hope that's helpful!

Yes, dev here, that's definitely possible. In fact if you use the "YubiKey Secret Workaround" you can do this right now. But at the moment Strongbox works in 1 of 2 exclusive modes:

1) Use YubiKey Hardware device

2) Use YubiKey Secret Workaround

I guess it could be possible to implement a hybrid for Auto-Fill mode, i.e. use hardware in main app and use secret workaround in Auto-Fill but I'm not sure if many would want that to be honest...

You can read more about the workaround field here:

https://strongboxsafe.com/hrf_faq/how-do-i-recover-from-yubikey-device-loss-what-is-the-secret-workaround-field/

Hi there, thanks!

It sounds like you might be hitting the dreaded iOS AutoFill KeePass silent crash resource issue:

https://strongboxsafe.com/hrf_faq/strongbox-disappears-dies-sometimes-when-using-autofill/

Are you using Argon2 with a large memory setting, or is the database itself very large/contain a lot of entries?

The best way to import 1Password into a Keepass database (it keeps all your fields, so better than .csv and such) :

In 1Password7 (i use macOS);

1. File > new vault create a new vault, named “ExportThis”
2. Select some (or all) of your items and click: Move To vault > “ExportThis”`
3. Settings > tab. “Sync” > select Vault “ExportThis” > Sync With > “Folder” Select a folder to sync the database to.
4. Your selected folder will now contain an “.opvault” file
5. Import this file into KeepassXC More documentation on how to import see here/docs/KeePassXC_UserGuide.html#_importing_1password_opvault))

Optional in 1Password7 on macOS: Preferences > Vaults > “Show in all vaults” > uncheck the vault “ExportThis” to hide the exported items vault when you have “all vaults” selected.

I use KeePassXC; Strongbox is the only iOS app I’ve used that correctly displays and rotates all my codes from my .kdbx file. Per KeePassXC recommendation, I use a separate file that only contains the TOTP codes:

https://keepassxc.org/docs/#faq-general-wordlist

Hi,

I use the approach documented here for syncing locally to my PC:

https://keepass.info/help/kb/trigger_examples.html#dbsync

Newly created and edited items seem to be fine. So at the moment, this is just sort of a minor issue that I can work around by deleting from my desktop instead of from StrongBox.

Thanks!