Unlock 1Password Along with OSX Lockscreen
This post does an excellent job of explaining why having 1Password unlock once the OSX lockscreen is unlocked, would be useful, as well as why it would not be insecure. So I won't repeat all the points.
The thread ended however, with an Agilebits employee essentially saying that they'd said no before, and there was probably a good reason for it, (s)he didn't know what that reason was, so "no" again. Could we just clarify why it's a no go? I'm happy to be proven wrong, but it seems like there's actually no issue with re-implementing this (it was a removed feature).
If the answer is that "too many people were forgetting their master passwords", or "I don't want this feature because I wouldn't find it useful", I think we need to rethink things.
1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Sync Type: Not Provided
Comments
-
Hi @afrazkhan,
Thanks for taking the time to ask about this! I'm sure a lot of people would find that feature useful, so that's not the issue here. Instead, it has a lot to do with the fact that, when we used to have a setting to do that back in version 3, it caused issues for a lot of our customers because it led to them forgetting their master password for 1Password.
You can read more information about that in this post from Dave Teare (specifically, the section under "Can I prevent 1Password from ever asking for my password?").
Now, that's not to say we'll never consider adding a similar option in the future - we never say "never". If we ever do re-add a feature like that, it would likely still require you to enter your master password occasionally. I can certainly let our developers know you'd like to bring back that option, I just can't make any promises about if/when that will happen.
We appreciate your feedback about this! If you need anything else, please don't hesitate to let us know. :)
0 -
Thanks Drew, I'll be waiting in hope then ;)
By the way, I get "Permission Problem You don't have permission to do that." when trying to access your link.
Could you please mention the following when discussing this with your product team:
If the password is stored in Keychain, you can always retrieve it by simply opening Keychain. If you've forgotten your OSX password and can't unlock Keychain, you've potentially lost your 1Password store anyway (depending on how you're syncing it / where you're storing it, and whether you have disk encryption enabled), so forgetting your 1Password password at this point wouldn't make a difference -- and you'd have bigger problems to worry about!
Secondly, in my opinion it should be off by default anyway, so regardless of the above point, if you enable it manually, it's kind of the users responsibility to know what they've enabled.
0 -
Hi @afrazkhan,
Sorry about that! The link works for me, but it might no longer be viewable to the general public. Here's what Dave said:
Can I prevent 1Password from ever asking for my password?
In previous versions of 1Password there was a setting in the Preferences called "Never prompt for master password". When enabled, your password would be stored into the OS X Login keychain and you would never need to enter your password, even across OS X restarts.
This setting caused issues for many users, however, as they would not need to type their password for months or even years, as the login keychain remembered it for them. When the login keychain would become corrupted or their password was deleted accidentally, many no longer remembered what their password was, causing all of 1Password's encrypted data to become inaccessible forever.
Starting in 1Password 3.9 this option was removed entirely in order to prevent this scenario from ever happening.
With that said, you can configure 1Password to not require your password very often. If you would prefer to enter your password very infrequently, disable all of the Autolock settings. With all Autolock settings disabled, you will only need to enter your master password once after every restart of OS X, or if you are using Fast User Switching.
So, although someone would normally be able to retrieve it from the OS X Keychain, there are definitely circumstances that can prevent that (i.e. corrupted keychain or accidental deletion of the master password key). I'm sure there are other examples too - but I definitely do see your point! Again, I can't promise we'll bring back a similar feature, although if we do, I'm sure it will be disabled by default (as it was before).
Thanks again, we truly appreciate it! :)
0
