Thread: Please recommend a good Password Manager
View Single Post
Old 04-18-2013, 06:39 PM   #32
Katsunami
Grand Sorcerer
Katsunami ought to be getting tired of karma fortunes by now.Katsunami ought to be getting tired of karma fortunes by now.Katsunami ought to be getting tired of karma fortunes by now.Katsunami ought to be getting tired of karma fortunes by now.Katsunami ought to be getting tired of karma fortunes by now.Katsunami ought to be getting tired of karma fortunes by now.Katsunami ought to be getting tired of karma fortunes by now.Katsunami ought to be getting tired of karma fortunes by now.Katsunami ought to be getting tired of karma fortunes by now.Katsunami ought to be getting tired of karma fortunes by now.Katsunami ought to be getting tired of karma fortunes by now.
 
Katsunami's Avatar
 
Posts: 6,111
Karma: 34000001
Join Date: Mar 2008
Device: KPW1, KA1
Quote:
Originally Posted by Penforhire View Post
If someone physically gets hold of your laptop (or other PC) it is generally still game-over for us. They can, for example, install a key-logger and learn your Keepass and Dropbox passwords the next time you enter them.
Yes, they can, but they will need to first remove the Admin password from UAC to be able to do so. It can be done, but:

- The thief would need to steal the notebook (or get in front of it at least).
- Have the luck that I forgot to pull out the USB-stick with the key file.
- Remove the password, install the keylogger.
- Do all of it without me not knowing.
- Hope that I'll activate Keepass before I ever need the Admin password.

It can be done, but it's unlikely. The chance of somebody getting a hold of the database, the keyfile AND the password all at once is small. If something happens which makes me not to trust my system, I would at once install a known clean image.
Katsunami is offline   Reply With Quote