This is a staging forum for AgileBits, not an official support forum. Visit http://discussions.agilebits.com instead.
Securtiy breach
Hi there,
Thanks for 1Password, ive just bought the real version and love it.
I have noticed however that there is a lot of information available to anyone within the contents.js file. Yes passwords are encrypted but, names, websites etc are not which is a huge concern as anyone can who gets there hands on this file has a direct understanding of the sites i visit and the people i mingle with. Would there any chance you can encrypt these too and have it run off an id number instead?
Cheers.
Thanks for 1Password, ive just bought the real version and love it.
I have noticed however that there is a lot of information available to anyone within the contents.js file. Yes passwords are encrypted but, names, websites etc are not which is a huge concern as anyone can who gets there hands on this file has a direct understanding of the sites i visit and the people i mingle with. Would there any chance you can encrypt these too and have it run off an id number instead?
Cheers.
Flag
0
Comments
-
flashx, welcome to the forum!
We never say "never," but there are no plans to encrypt the titles or URLs of Login items, mostly because to do so would slow the speed with which they could be made available to you in the browser extensions, making performance unacceptable.
This article about the [url="http://help.agile.ws/1Password/agile_keychain_design.html"]design of the Agile keychain[/url] may be of interest.Flag 0 -
[quote name='DBrown' timestamp='1294577517' post='18676']
flashx, welcome to the forum!
We never say "never," but there are no plans to encrypt the titles or URLs of Login items, mostly because to do so would slow the speed with which they could be made available to you in the browser extensions, making performance unacceptable.
This article about the [url="http://help.agile.ws/1Password/agile_keychain_design.html"]design of the Agile keychain[/url] may be of interest.
[/quote]
Cheers,
thanks for that info, i understand the reasoning now, i suppose all you can do is keep it in the back of your mind for the time being <img src='http://forum.agile.ws/public/style_emoticons/<#EMO_DIR#>/wink.gif' class='bbc_emoticon' alt=';)' />Flag 0 -
[quote name='DBrown' timestamp='1294577517' post='18676']
flashx, welcome to the forum!
We never say "never," but there are no plans to encrypt the titles or URLs of Login items, mostly because to do so would slow the speed with which they could be made available to you in the browser extensions, making performance unacceptable.
[/quote]
+1 vote for encrypting these items.Flag 0 -
We understand there are folks who want to keep their visited sites hidden, as well as their credentials for logging in to those sites.
It may be that this is something we will look into for future releases of the 1Password product line (which would all need to support it simultaneously, of course).Flag 0