Passwords Category?
I was doing some cleanup in 1Password, started looking at the items in the "Passwords" category, and wondering what they were. Searching through the discussions provided some insight, but not much. So I have two questions: what purpose does this category serve and what could go wrong if I just deleted most of the items in the category? I do see a couple of things I will need to keep, like passwords not associated with a login (like the password for my encrypted iPhone backup), but there are only a couple of these.
Thanks.
Comments
-
Passwords is the category used when 1P4 creates generates a new password that it not associated with a Login (i.e. when you use Password Generator, and don't update the Login record, for example). This creates an record of the password entry, which you can subsequently convert to a Login record.
I've used the Password category for my own password-only records, but some have suggested this category should remain for 1P4's use only. I can see this point of view, as the category can become polluted with many hard-to-identify entries, making finding your own more difficult. I've succumb to the good advice provided here, and converted my password-only entries into Logins.
0 -
Thanks MrC! I think my problem is that I generated a number of passwords I never used. Looking at what I have in the Passwords category, I find only one entry that is being used so I can safely delete the others.
0 -
You could delete them, yes, however we do not generally recommend that. They serve in some respects as a backup, so if you generate a password and forget to turn it into a login (or whatever) you can still look up that password via the passwords category.
0 -
Thanks for the advise. I'll be careful, but after inspecting them I find the majority are passwords that were generated and never used.
0 -
Hi @Reese,
I've got a fair few passwords cluttering up my Passwords category as well and have to do a bit of housecleaning to clear things out every now and then. The passwords are titled with the URL you were visiting when they were generated, so I tend to double-check these URLs against my Login list before deleting, just to be sure that the password in the Login is the current and most up-to-date one. After that, if you're certain, you can remove these extras.
Can't blame us for being a little bit over-cautious here ... your data is important, and we certainly don't want you to be without it! :)
0 -
I am a new 1Pass user, and immediately found several of my iOS Apps do not support 1Pass. Looking for a solution, I found the "Password" Category. I'm still experimenting, but assumed that I can your strong password generator for these nonparticipating APPS and use the Password category to save these passwords in the "vault". My plan is to copy and paste the passwords whenever I want to access these APPS.
@ Mr. C. I'm a little confused regarding your cautionary comments. I'll eventually be upgrading to Password 5 as soon as Apple can solve Yosemite's Wifi bug. Are you suggesting that these passwords I'm creating and saving for my iOS APPs will be compromised?
@Megan. Again, am I correct in my decision to use the "Password" Category in conjunction with the Password generator as solution to creating/saving passwords for my "non participating" iOS Apps?
0 -
Hi @RentalProp4ALL,
No real caution in my comment. 1Password uses the Password category when it generates its passwords via the Password Generator, and I found that category being filled with items I didn't immediately recognize, so I opted to use Login instead, with no user name or URL, for password-only entries. Its really a matter of preference. You won't know which method you like best until you try it for a while. And conversion from Password to Login is easy.
0 -
Thanks so much for choosing 1Password to keep your digital data secure and organized! I hope you're enjoying it so far.
Again, am I correct in my decision to use the "Password" Category in conjunction with the Password generator as solution to creating/saving passwords for my "non participating" iOS Apps?
I generally store my iOS app passwords in the Login category. Logins are handy for storing the username/password combinations that are usually required to log in to apps, and since many apps that I use also have a website component (such as Facebook and Evernote) it just makes sense to me.
I hope this answers your question, but if there's anything else that you'd like to know about 1Password, we're here to help!
0 -
@Megan. So, what is the purpose of the Password category? How can it best be used?
Also still experimenting. But I have saved a password for a fairly sensitive APP in my smart phone. I noticed that this mobil APP's password is not listed on my computer? Does this APP sync with my smartphone?
Weirdly enough, I am unable to log onto this discussion forum via 1Pass. I've followed advice from another Thread on how to "Save a New Logon". That worked beautifully with another site that I did not save properly. But it does not work on AgileBits own site. Is the result of some sort of security arrangement you have in place?
0 -
Personally I don't use the Password category anymore. I keep all my passwords in Logins.
I'm not suggesting that anyone else do this, as such, but I deleted everything in "Passwords," and my Logins were all unaffected.
0 -
Your point regarding usernames in "Login' is a good one. I was using notes for that in "Passwords".
I have a security question. I have a couple of non-participating iOS APP sights that contain sensitive information. These are the sights that I used 1Pass' strong generator feature and saving them in 1Pass. What I am forced to do is copy/paste that password when signing onto the APP(s).
My question is: where is the clipboard those passwords are copied on? Is it in the 1Pass vault or on the device itself? If the copied password remains in the vault, I assume it is secure from "hackers". If it is on the devices clipboard, is there a security issue?
Please let me know how this works.
0 -
Copied passwords are held in the system clipboard. You can use the "Clear Clipboard contents after x seconds" feature in 1Password's Security preferences to keep a copied password from being retained. Note that some clipboard manager apps such as CopyPaste don't honor that setting and retain copied passwords in there stack.
As for the Passwords category, I do use it to store password and combination information for items such as my home safe, encrypted disk images, Quicken file, encrypted PDF files, Authy Backups password, my wife's 1Password password, and other items that don't have a username or User ID associated with them. Each to their own though!
0 -
@oshloel Neat avatar! Thanks for the reply. I just checked the 1Pass preferences on my computer, and the default to clear Clipboard contents after 90 seconds.
I need to look into how it works on iOS because password I have on that remains for several minutes. I need to figure just where those passwords are being kept on my mobile device.
0 -
@RentalProp4ALL The same setting is available under the Security section of Settings in the iOS app. I have mine set for 90 seconds on both my Mac and iOS devices.
0 -
So, what is the purpose of the Password category? How can it best be used?
The 'Passwords' category is a safety net. Every password generated by the password generator is saved to this category once you click the 'Fill' button in the generator. This ensures that if you do not update your Login entry with the newly generated password, that it doesn't get lost.
Other users put passwords such as combination lock codes in the Passwords category, or the passwords for any secondary vaults.
As to your second question about the security of the clipboard, @oshloel has given you a pretty great response here, but if you need any further clarification, we're here to help!
0 -
Hi@Megan
The 'Passwords' category is a safety net. Every password generated by the password generator is saved to this category once you click the 'Fill' button in the generator. This ensures that if you do not update your Login entry with the newly generated password, that it doesn't get lost.
Thank you Megan, this info helps me a lot. 1Password is not particularly intuitive, and I did not realize how to save from the password generator while in the process of creating an account. This makes creating an account so much easier!
Regarding @oshloel's response, am I correct in assuming that:
1. I can safely copy/paste my saved Passwords (be they located in the Login or Password category) to nonparticipating APPS in my mobile device.
2. These passwords are held on 1Pass' clipboard - which is in my vault, and
3. Cannot be accessed by someone attempting to hack into my device - or my computer for that matter.?Regarding my settings, I see that the iOS APP's default to clear the clipboard's contents is "never". I already set that to another time frame. So thank you very much @oshloel for your response.
@Magan, going back to the Login Categories - what does the [Website] "open and fill" prompt do?
How do you use "web form details"?This may sound silly, but do you have a Username generator?
And is there a good way to save answers to "personal questions" I'm sometimes asked to fill out when creating an account?
Thanks all.
0 -
Hi @RentalProp4ALL,
- I can safely copy/paste my saved Passwords (be they located in the Login or Password category) to nonparticipating APPS in my mobile device.
No, your clipboard is an insecure place to keep anything in. However, that's the point of the clipboard, to share data between apps and it's difficult to do that securely across all apps.
The best thing you can do is minimize the clipboard and if cannot be done, get rid of it whenever you're done with the data. That's why we recommend to use the Clear clipboard security option in 1Password.
- These passwords are held on 1Pass' clipboard - which is in my vault, and
Your clipboard is not related to any specific app or its data store. It's a global system clipboard meant to share data across every app or process running on the device. When you copy the password from 1Password, its being copied to your system clipboard with a type set to sensitive matter, so that clipboard managers can choose to ignore copying it to their own history but not all apps do that, it's an honor system.
- Cannot be accessed by someone attempting to hack into my device - or my computer for that matter.?
It absolutely can be. All bets are off if someone has direct control over your system, they can just copy everything that you copied to your clipboard and even your keystrokes. OS X and iOS does have a secure keyboard access feature for certain password fields, so grabbing your master password is difficult.
what does the [Website] "open and fill" prompt do?
Open the website in your default browser and then automatically fill your data to log you in.
How do you use "web form details"?
You don't use it for anything, it is raw data we saved when you let 1Password auto-save your Login data via our browser extensions. The data is used to increase the accuracy of the filling.
This may sound silly, but do you have a Username generator?
No, we don't have one and it is not silly. It is actually a good way to ensure you're not connected between different sites by the same username.
The problem is that the username is also used as your communication method, so with so many usernames being used as the email address, it's not worth it at the moment until all sites decide to separate your username and email address.
You can certainly use our password "pronounceable" option to generate your username. If you use an email service that supports plus addressing (username+random@email.com or random@username.email.com), you can also do that.
And is there a good way to save answers to "personal questions" I'm sometimes asked to fill out when creating an account?
Yes, use our custom fields to generate a password field for the answer and generate a random password. You'd find it easy to anchor your Login before you start creating your security questions, like this:
0
