Password on Desktop
I worry my data has been compromised. I sync thru Dropbox with my other iOS devices. I am using two factor authentication on Dropbox. If I change the 1P password to open the chain on my desktop, does that change it to open it on Dropbox? I'm wondering if I make the change in the password "does it matter" if the data has already been copied/compromised off my machine? Bottomline: if access to 1P has been compromised what is the best way I can protect all of the information right now? Thank you!
1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Sync Type: Not Provided
Comments
-
Sorry...using 1P version 5.4 BETA, OSX 10.10.4
0 -
Hi @TimCollins82,
I'm sorry to hear you think your data has been compromised! Out of curiosity, what leads you to believe that?
If I change the 1P password to open the chain on my desktop, does that change it to open it on Dropbox?
Yes, if you change your master password and are syncing your vault with Dropbox, the master password will also be changed for the data file in your Dropbox account.
However, the master password change will work a little differently on your iOS devices. After changing your master password on your Mac, you'll need to follow these steps on each iOS device:
- Unlock 1Password on your iOS device with the old master password.
- Allow it to fully sync.
- Once the sync is complete, go to Settings > Security > Lock Now.
- Try to unlock 1Password with the new master password.
The reason you need to do this is because the 1Password app doesn't sync until it's unlocked. Once it syncs, the new master should work.
I'm wondering if I make the change in the password "does it matter" if the data has already been copied/compromised off my machine?
Are you worried that someone copied your 1Password vault from your Mac to their own computer? Or that they gained access to your Dropbox account? Your 1Password data file is encrypted with an exceedingly secure encryption algorithm called AES. Even if someone were to acquire a copy of your 1Password data file, it would be extremely difficult (approaching impossible in a human lifetime) for them to actually gain access to your passwords without your master password.
If someone gets a copy of your 1Password vault, and if they somehow know your master password, then they will be able to unlock that copy of your 1Password vault - changing the master password on your own devices won't change that. But that's why your master password is so important. Unless you used a very easy master password that someone can guess, they should have no way of knowing your master password, and therefore will not be able to unlock your vault. You should never tell anyone what your master password is, and it should only exist inside your head.
Similarly, even if someone stole your Mac or iOS devices, they will not be able to unlock your 1Password vault without knowing the master password. We have some information about what to do if your device is stolen in this knowledgebase article: My device was stolen. Is my 1Password data safe?
Even if your Mac/iOS devices weren't stolen, many of the tips on that page might be helpful for you. For example, you may want to change passwords for important accounts (including Dropbox), change your master password, unlink the stolen device from Dropbox, and so on. You may also be interested in taking a look at some of the information here: Security and Privacy
Does that help to answer your questions? If you can let us know more about the circumstances of why you think your data was compromised, we may be able to give you some more specific advice. Please let us know if you have more questions or need help!
0 -
Awesome! Thank you!
0 -
You're very welcome! I sincerely hope it turns out that nothing was compromised for you, but if it was, I'm glad my information was helpful. If you have more questions, we're here for you! :)
0
