This is a staging forum for AgileBits, not an official support forum. Visit http://discussions.agilebits.com instead.
Permanent lock on specific items
Been using 1Password for a few days now and feel very happy with a lot of the features. Definitely a productivity boost over Apple Keychain and add Alfred to the mix and it's a real time-saver - thanks!
There is one aspect of my Apple Keychain workflow that I am struggling to migrate. Perhaps I just have to change the way I work.
In Keychain I had two keychains - "Login" and "Secure Items" This latter was pretty much always locked and included things like the login to my Amazon account, Paypal and a few other services I wanted to keep very safe. It also had some Secure Notes in it for things like Social Security numbers and Bank Information.
This worked well. For most sites the login fields were just automatically filled in, but for critical sites the user had to enter a strong password. This meant that if someone jumped onto my machine in my absence they couldn't login to those "protected" sites without knowing the password.
As far as I can see, 1Password is a single keychain and does not provide item-based security options. Am I right? It would be great to translate this part of my workflow to 1Password, but if I have to live without it, I might just keep some items in the Apple Keychain. But then I have to turn on Auto-Fill, and then I'm going to see those irritating sheets offering to save my passwords.
Any thoughts?
Pat
There is one aspect of my Apple Keychain workflow that I am struggling to migrate. Perhaps I just have to change the way I work.
In Keychain I had two keychains - "Login" and "Secure Items" This latter was pretty much always locked and included things like the login to my Amazon account, Paypal and a few other services I wanted to keep very safe. It also had some Secure Notes in it for things like Social Security numbers and Bank Information.
This worked well. For most sites the login fields were just automatically filled in, but for critical sites the user had to enter a strong password. This meant that if someone jumped onto my machine in my absence they couldn't login to those "protected" sites without knowing the password.
As far as I can see, 1Password is a single keychain and does not provide item-based security options. Am I right? It would be great to translate this part of my workflow to 1Password, but if I have to live without it, I might just keep some items in the Apple Keychain. But then I have to turn on Auto-Fill, and then I'm going to see those irritating sheets offering to save my passwords.
Any thoughts?
Pat
Flag
0
Comments
-
Alfred. Yes! <img src='http://forum.agilebits.com/public/style_emoticons/<#EMO_DIR#>/biggrin.png' class='bbc_emoticon' alt=':D' />
It may help to consider your entire 1Password data file in the same way that you considered your "Secure Items" OS X keychain before. If you have any doubts about the strength of your master password we have some suggestions for creating a strong, memorable one:
http://blog.agilebits.com/2011/06/21/toward-better-master-passwords/
(Able to withstand some [url="http://blog.agilebits.com/2012/07/31/1password-is-ready-for-john-the-ripper/"]serious password cracking power[/url].)
It might help to adjust the auto-lock settings a bit to best suit your usage. For myself, I have auto-lock completely disabled except for "Lock when sleeping". That way I don't have to keep typing in my master password all day long while I am working, but if I just close the lid on my MacBook my 1Password data is protected. I close the lid any time I walk away from my computer. Obviously a thief could grab the thing right out from in front of me in some circumstances, but the odds are pretty good that the thief would lock 1Password for me when closing the lid to run off with the thing. <img src='http://forum.agilebits.com/public/style_emoticons/<#EMO_DIR#>/smile.png' class='bbc_emoticon' alt=':)' />
You can also disable Universal Unlock in the browser extensions if you want them to be authenticated separately from the main application.
I hope that helps. Let me know.Flag 0 -
Thanks Khad. I'll experiment with this a bit. Maybe I just need to get used to a new way of working.
PatFlag 0 -
I think this was just a matter of getting used to it.
I mainly work at home so it's unlikely someone will swipe my Mac, but as I keep client info in keychain I want it to be really safe.
So, in 1Password Prefs I Lock after 30 mins, when sleeping and when screen saver activates.
In Mac Security & Privacy I require password after Sleep or Screensaver.
What's cool is with Alfred, I just hit ctrl-space, type 'lo' (brings up "Lock") then Return and the Mac is locked and in the background 1Password locks too.
Seems pretty safe!Flag 0 -
Sounds like a good setup to me! It helps that you are comfortable with Alfred. It's a great app and allows for so many quick actions like that. I'm sure you are already using the [url="http://blog.alfredapp.com/2012/05/01/alfred-1-2-released-1password-large-type-new-themes-clipboard-merge-and-more/"]1Password integration[/url]. <img src='http://forum.agilebits.com/public/style_emoticons/<#EMO_DIR#>/smile.png' class='bbc_emoticon' alt=':)' />Flag 0