No Weak Passwords Results
Hello. I have 1Password v. 4.4.3 (443000) running on a MacBook Pro running OS X 10.8.5. I just now tried to start using the security audit features. I have Watchtower enabled, but I don't understand my Weak Passwords results. All I see is the word "Weak" in the list pane, and no result (just a 1Password logo) in the results/main window. I know for sure I have a weak password or two.
I recently merged my 1Password vault from my Mac with my iPhone, if that adds any information. There was a merge warning because the vaults had a lot of differences, and I backed up and merged anyway.
1Password Version: 4.4.3 (443000)
Extension Version: Not Provided
OS Version: 10.8.5
Sync Type: Dropbox
Comments
-
All I see is the word "Weak" in the list pane, and no result (just a 1Password logo) in the results/main window.
@josephwix: I'm afraid I may be missing what you mean here. The merge shouldn't be a problem, since it seems clear that you wanted the two vaults combined. This is what I see when I select the "Weak" section in the sidebar:
Lots of fake accounts with "Terrible" passwords there! Are you seeing something different? Perhaps a screenshot would help. Also, please tell me the OS and 1Password versions you're using on all devices, and the exact steps you're taking, so we can figure out the best plan of action. The more information you can give, the better. Thanks in advance! :)
0 -
@brenty: I only added the bit about the merging because the form said to include as much information as I could, and that is a recent major change.
Here is a screen shot:
Hopefully this helps shed light on the subject.
I also have 1Password on an iPhone 4s and as of late an iPad mini (also a recent change). The iPhone version is on 4.5.3 (iOS 6) and the iPad version is 5.4.3.
I'm not sure what you mean by "exact steps [I'm] taking." Let me know if there's more info you want to know, but I can't think of anything else to elaborate on. Thanks!
0 -
Thanks for those extra details and screenshot, @josephwix.
One question comes to mind: maybe your 1Password vault doesn't actually contain any items that have weak passwords? :)
Do you see any matching items when you select Edit > Find > Show Search Options from the menu (or press the
⌃⌥⌘Fkeyboard shortcut) and choose this search criteria?
If you do get results, you can change Search:
All Itemsto Search:Logins(or any other category) so only matching items in that category, if any, will be listed.Once we know what results you get from that we can proceed further from there. Thanks!
0 -
Hi @sjk. Thanks for the helpful test, and sorry for the delay.
I have done the searches you provided. I got mixed results.
I got the same results, whether I searched "All Items" or "Logins."
For "Password strength less than or equal to weak," I got only five results - and all of these were logins with no password at all.
I ventured out and searched "Password strength is:" and went through "terrible," "weak," "good," "excellent," and "fantastic." Oddly enough, I got zero results for everything, except one result for "fantastic." But I have 55 logins, most of which do have passwords. Admittedly, to your point, I guess most of the passwords are very good, but not all of them. Is it just me, or are the above results strange?
I have one password that is eight lowercase alphabetic letters, no spaces. I would have thought that at least that would register as "weak." Maybe not?
0 -
Welcome back, @josephwixs. Your delay is all okay. :)
Thanks for those details of your testing and results!
Is it just me, or are the above results strange?
It's not just you; they can be unexpected and confusing. Here's what appears to be happening, related to things you've reported:
The
Password strengthsearch criteria can fail to match items that should be included in the results. We've got a bug filed for that.ref: OPM-1408
When selecting Weak Passwords in the sidebar, Login items without a password will be excluded from the results. There's also a bug filed for that.
ref: OPM-3090
You mentioned running 1Password 4.4.3, which is the last update for version 4 that's no longer being developed. This makes it unlikely for it to be updated again, and even more unlikely that these bugs would be fixed even if it did get an unforeseeable update. Sorry to be the bearer of that news but I do want to be open with you about it.
One suggestion for working around these bugs is simply to sort the item list by Password Strength, like in the image in brenty's reply. Instead of sorting All Items or the Logins category, a Smart Folder can be used to match those items, e.g.
And then that Smart Folder's item list can be sorted. Something like you've already tested for a Smart Folder's search criteria, regardless of sorting, might also do the trick:
For "Password strength less than or equal to weak," I got only five results - and all of these were logins with no password at all.
I personally like sorting Login items by Password Strength to see which ones fall under which strength levels. At the moment it also seems the most reliable method, not relying on custom search criteria to do the matching.
I have one password that is eight lowercase alphabetic letters, no spaces. I would have thought that at least that would register as "weak." Maybe not?
What strength level does it have in a Password Strength sorted item list? As a test, if you duplicate that item then change and and revert its password does the strength level change?
I hope this is helpful to you even if not an optimal solution. If there's anything else we can help with please let us know. Thanks!
0 -
Thanks again for the help, @sjk, especially for the workaround ideas. It didn't register until now that the current version is 5 and I'm on 4.
I haven't worked on the issue very recently, but I'm going to start implementing the ideas soon and will let you know if I run into any issues. I appreciate the support!
0 -
You're welcome, @josephwix. My pleasure!
Everything I suggested ought to work the same for version 4 as with 5. If you do get stuck you know where to find us. :)
Enjoy the rest of your weekend!
0
