No worries! Glad it's all sorted out and thank you for the kind words on the app. :) Will of course appreciate your support with the Pro version.
Cheers,
-Mark (Strongbox dev)
Hi there, I'm guessing it's a KeePass database?
You didn't by any chance delete the Strongbox folder on iCloud did you? There's a FAQ on that here:
Since Strongbox stores everything in a KeePass2 database, you can install KeePassXC, open your database with it and use the KeePassXC-Browser add-on for Firefox.
My initial thoughts after 5 minutes:
Parent/Sub1
and Parent/Sub2
should appear like a folder Parent
with 2 entries Sub1
and Sub2
(internally, it already seems to work this way as clicking Parent
shows all records from Parent/Sub1
and Parent/Sub2
)
Parent
only show items that have Parent
as a tag, i.e. ignore sub-tags (Parent/Sub1
) - maybe do this as an easy-to-reach toggle as both variants are useful{REF:P@I:1234}
) - maybe only when holding the Option key?Great work! This will be my default UI from now on.
But interestingly KeePassium has full support for pCloud on their iOS App. Why is that so?
And how are they doing it without API provide by pCloud.
Thanks u/Aikido-girl!
Yes, so using a physical hardware key like a YubiKey is a Pro feature on both iOS and macOS. If you drop your Pro status, then I'm afraid yes, you'll lose the ability to use a physical hardware key with Strongbox.
However, the "Virtual Hardware Key" option is still available to all users and will get you out of any sort of emergency situation. You can read more about those here:
https://strongboxsafe.com/updates/virtual-hardware-keys/
Only on iOS at the moment, but they are also coming to macOS.
After installing, go to System Preferences --> Extensions, find "Password AutoFill" in the left list and enable "Strongbox".
In Strongbox, open your database, go to Database --> Database settings... and there, on the "AutoFill"-tab, enable AutoFill for that database and configure the other options to your likings.
Also make sure you've enabled "Username and Passwords" auto-fill in Safari Preferences.
Here's the official documentation about this: https://strongboxsafe.com/support/#reamaze#0#/kb/how-to-guide/how-to-autofill-on-macos
It'll be great once Strongbox supports this functionality. In the meantime, I use the Custom Icon Dashboarder plugin for KeePass 2.x.
Instructions for how to install KeePass 2.x plugins: https://keepass.info/help/v2/plugins.html
Once you have the plugin setup, the basic steps are:
It's a little tedious, but not bad once you get used to the process. Hope this helps!
I deleted my comment because I realized later that you probably already tried. However for you can't open you db with strongbox, you could try KeePass's synchronization instead of directly sync the local database on windows.
Yeah, I have heard of other reports of issues like this with SMB connections. Since you're using Synology you could use SFTP or WebDAV which are rock solid:
https://strongboxsafe.com/updates/syncing-with-synology-nas/
Hi there, yes it does. We use the same mechanism for storing all these important/critical secrets and you can read more about that here.
As to best practices, the answers will vary depending on your threat model and opinions vary on this. The fact that you're using a Password Manager at all is a big step up. Using a format like KeePass and managing where you store the database yourself is another leap.
You could do things like host the database yourself on an SFTP server/WebDAV server or just store it locally on device if you're concerned about some kind of government/hacker having access to your database. Add a Key File or YubiKey as a second factor. Each of these steps has trade-offs usually in terms of convenience. Using something like Face ID or a PIN Code as convenience unlock is also a risk, but usually the trade off is worth it for most people. But also, typing your master password in in view of any say security cameras is another (possibly worse) risk. There's a lot of factors here in terms of operational security...
Personally I use my own SFTP server and Face ID, I don't use a Key File or YubiKey. I feel this is a great level of security for myself. I'm not a dissident activist under mortal threat from a tyranical regime, or a whistleblower worried about the NSA though...
In short, it really depends on what your threat model is. Hope that helps.
Hey! Each browser has a different way of exporting passwords (you can usually find steps on how to do it on support pages of the specific browser).
Once exported, you can import them directly into the KeePass database, please check out the Import/Export section of our website - https://strongboxsafe.com/support/#reamaze#0#/kb/migration-and-import-slash-export
After that, you should be able to see them in Strongbox on iOS.
There are a couple of ways that help/ameliorate this:
- Use the AutoFill Wormhole option
- Use Touch ID or Watch Unlock to speed things up
The Wormhole works if your database is already unlocked in the background. You can read more about that here:
https://strongboxsafe.com/updates/macos-big-sur-autofill/
Your second question is a popular one too, and we don't know of anyway to disable the Keychain prompts on MacOS without disabling the entire AutoFill feature. This just doesn't seem possible yet. You can do this on iOS but not on Mac so we're hoping Apple will fix this.
Hi, to get Safari AutoFill working on you iPhone just follow the instructions below:
https://strongboxsafe.com/support/#reamaze#0#/kb/faqs/how-do-i-use-autofill-on-ios
Should work well for you.
Do you know if they happen to offer an SDK or API for developers to access this? The last time I checked they didn't and I can't see anything on their site to indicate they do.
Without an API/SDK there's no way to integrate with them natively.
Alternatively, do they support WebDAV or SFTP? These can be used instead also by Strongbox, but I can't seem to see if they support these either.
Unfortunately, that only leaves one option, the iOS Files app, and it looks like their integration there is problematic :(
Sorry about that, perhaps you can raise this with them, ask them if they have any plans for an SDK/API or WebDAV/SFTP access.
It's the exact same feature wise as the regular Pro version you can upgrade to In-App, it's just that it works with Apple's Family Sharing program which requires an outright purchase, not an In App Purchase... See here. Hope that helps!
Hi, I don't believe it's possible to block apps from WiFi on iOS at the moment, though it is apparently possible to block cellular data...
There is an article on the possible network connections here:
I'm not sure why Apple haven't enabled this kind of blocking feature though. Seems like a nice to have for security conscious users.
Hi, this should work for you, Dropbox is pretty good in both "Files" and "Native" sync. You don't say which method you're using above. Did you add via the "Files" method?
One thing to check if you're using Files is this:
Otherwise check that your laptop Dropbox sync app actually fully syncs the changes to Dropbox before unlocking in Strongbox.
Strongbox doesn't support a KeeShare like feature, at least at the moment...
Have you seen the YubiKey Secret Workaround feature for YubiKey? This would allow you to open a YubiKey protected database on your iPad without using the actual YubiKey. That is something I know some people use to get around this sort of situation.
I'm not sure if that's suitable for you?
Hi there... There are quite a few ways to get your database onto your device so that it's a local only copy, rather than hosted/sync'ed to a cloud.
Remember, if you are using a local database, it is stored only on the device. Any loss of that device could then mean catastrophic data loss. Be sure to make regular backups.
There's a couple of handy FAQs here that might also be useful:
Hope that's helpful!
Yes, dev here, that's definitely possible. In fact if you use the "YubiKey Secret Workaround" you can do this right now. But at the moment Strongbox works in 1 of 2 exclusive modes:
1) Use YubiKey Hardware device
2) Use YubiKey Secret Workaround
I guess it could be possible to implement a hybrid for Auto-Fill mode, i.e. use hardware in main app and use secret workaround in Auto-Fill but I'm not sure if many would want that to be honest...
You can read more about the workaround field here:
Hi there, thanks!
It sounds like you might be hitting the dreaded iOS AutoFill KeePass silent crash resource issue:
https://strongboxsafe.com/hrf_faq/strongbox-disappears-dies-sometimes-when-using-autofill/
Are you using Argon2 with a large memory setting, or is the database itself very large/contain a lot of entries?
The best way to import 1Password into a Keepass database (it keeps all your fields, so better than .csv and such) :
In 1Password7 (i use macOS);
File > new vault
create a new vault, named “ExportThis”Move To vault
> “ExportThis”`Settings > tab. “Sync” > select Vault “ExportThis” > Sync With > “Folder”
Select a folder to sync the database to.Optional in 1Password7 on macOS: Preferences > Vaults > “Show in all vaults” > uncheck the vault “ExportThis”
to hide the exported items vault when you have “all vaults” selected.
I use KeePassXC; Strongbox is the only iOS app I’ve used that correctly displays and rotates all my codes from my .kdbx file. Per KeePassXC recommendation, I use a separate file that only contains the TOTP codes:
Hi,
I use the approach documented here for syncing locally to my PC:
https://keepass.info/help/kb/trigger_examples.html#dbsync
Newly created and edited items seem to be fine. So at the moment, this is just sort of a minor issue that I can work around by deleting from my desktop instead of from StrongBox.
Thanks!