The autotype feature, I think, does not use the clipboard, but I suppose this works as if you are typing it yourself, thus susceptible to keyloggers. The clipboard has one password in it though (and probably the username in the clip before or after) for a short time so I guess it could be grabbed. And I think copy/paste defeates keyloggers. What I do know: the copy feature from Keepass will itself erase the clipboard after a few seconds, I believe you can even set the interval yourself. Possible threats to consider: 1) something malicious on the site I am visiting or another site that is open (thus: does the plugin have access to the database at once),2) a keylogger on my computer, 3) some malware making copies of the clipboard, 4) some malware explicitly designed to grab info from logins where keepass is used How do these three methods compare in security? I do not care about ease of use now. Recently the KeepassXCBrowser plugin was introduced, and I could also use the copy feature from Keepass. I use KeepassXC, and up till now I used the autotype feature. I am looking for the way to enter credentials in the browser in the most secure way.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |