Existing users, log in.  New users, create a free account.  Lost password?

Mac OS X  |  Security / Privacy  |  Password Managers  |  PasswordMaster  |  Unacceptable - Stored Passwords ARE NOT SECURE!

PasswordMaster

PasswordMaster

Serial/password storage/creation; 448bit encryption

Version:  1.6.3

   [ Views: 658 ]

Unacceptable - Stored Passwords ARE NOT SECURE!

Feedback Type:  Commentary

Contributed by: MitchJi Sunday, April 03 2005 @ 07:37 PM PDT

Product Platform: MacOSX

Used Product For: Over One Year

Recommend Product: NO

I set up a second boot partion and copied the password master files and application to the new partition and it opened them without requiring a password. The password is probably stored in a preference file or something.

I sent an email to the developer (several weeks ago) and didn't get a reply (which is very annoying).

The chances of someone stealing my files is pretty remote but I have my ebay and paypal passwords, visa card information, online banking login information etc. It is just not worth taking a chance.   

3 of 3 users found this helpful.

Rate this Commentary

Was this Commentary helpful? Yes | No

Comments

2 comments |

Oh yes they are!   :-)     - Glasgow

MitchJi - There's an option in the Preferences (which is documented in the supplied User Guide) to enable password protection for the application itself. Here's a brief excerpt: "You can enable application-wide password protection so that you have to enter a password before being able to use the program." (NB I haven't actually tried using this feature myself, but the feature is there...)

From your comments, it sound as if you haven't tried enabling this option, so that would make your comments a little unfair to the application/author...

Disclaimer: I have absolutely no connection with the author or RAILhead Design.
 

Reply to This

Thursday, June 02 2005 @ 08:35 AM PDT


Actually, they are NOT SAFE!    - a_vassalino

Glasgow, you miss the point, I bellieve.

PasswordMaster stores its data, your info (encrypted) in User/Library/Application Support/Railhead Design and although the 3 files there are encrypted, if another party "borrowed" those files, they would be able to open them on their own computer (if it were a Mac) if they had a copy of PasswordMaster.

Terrible security hole and author won't acknowledge anyone pointing it out to him. It's too bad, because I really liked the app before I discovered this shortcoming, which is a dealbreaker for a "secure personal data" storage app.

Reply to This

Monday, August 01 2005 @ 04:22 PM PDT