KeePass 2.38 Password Manager released - gHacks Tech News

KeePass 2.38 Password Manager released

KeePass 2.38 is the latest version of the password manager. It features minor improvements and fixes for the most part.

Whenever someone asks me if I use a password manager, I answer that I use KeePass. I have plenty of reasons for using KeePass and not one of the available online password managers. Most important for me is that I have full control over the database file. It is not hosted somewhere on the Internet, and there are any data transfers between remote servers and my work PC.

Sure, KeePass has some limitations. Sync requires manual setup if you need it, and it is officially only available for Windows. You can get around most of the limitations, for example by unofficial ports or set up a custom sync operation.

KeePass 2.38

keepass 2.38

KeePass supports an update check but not automatic updates. You need to visit the official project website to download and install the program manually.

KeePass 2.38 installs an empty languages folder during installation, and the portable version comes with the folder as well. It is used to store language files if you require them.

KeePass users find new and handy "open folder" buttons when they open the languages or plugins manager in the program. The buttons open the local folder directly for easier access and managing.

open folder button

Plugins extend the password manager in various ways. The official plugin repository lists plugins that add backup, synchronization, or import capabilities to the program. Languages, on the other hand, change the interface language.

Here is a list of other changes in KeePass 2.38:

  • Printing improvements -- Specify placeholder behavior, group notes inclusions, improved embedding of CSS, spaces in passwords are encoded as non-breaking spaces and enhanced UI updating in print dialog.
  • Runtime Activation Policy setting -- Improves compatibility with Microsoft User Experience Virtualization.
  • UI Scaling -- Improvements when using KeePass on systems with different DPI values.
  • Fixes and workarounds: Microsoft Office and Mono workarounds.
  • Other changes: Improved fatal error handling, KPScript improvements, and code optimizations.

Closing Words

KeePass 2.38 is not a massive release with a host of new features, but that is not necessary in my opinion as there is little that can be improved or added to the password manager.

Now You: Which password manager do you use, and why?

Summary
software image
Author Rating
1star1star1star1star1star
5 based on 10 votes
Software Name
KeePass
Operating System
Windows
Software Category
Security
Landing Page

We need your help

Advertising revenue is falling fast across the Internet, and independently-run sites like Ghacks are hit hardest by it. The advertising model in its current form is coming to an end, and we have to find other ways to continue operating this site.

We are committed to keeping our content free and independent, which means no paywalls, no sponsored posts, no annoying ad formats (video ads) or subscription fees.

If you like our content, and would like to help, please consider making a contribution:

Comments

  1. Luca said on January 10, 2018 at 12:57 pm
    Reply

    1) For sync, I solved it by using a kdbx file stored on a personal Nextcloud share accross my PCs;

    2) There’s an interesting alternative, keeweb https://keeweb.info/ and it’s online app: https://app.keeweb.info/ in which you can open a local kdbx file without having Keepass installed on PC.

    1. Nate said on January 10, 2018 at 2:42 pm
      Reply

      There’s also KeeWeb plugin for Nexcloud that allows you to open a kdbx file through the interface. I’ve never used it but it’s interesting if you do in fact use Nextcloud.

  2. Gabriel said on January 10, 2018 at 1:29 pm
    Reply

    KeePass + DropBox means it’s everywhere I need it to be. In fact, if i use KeepassDroid I can open the database (which is synced by DropBox on my phone) on my phone too. So it’s synced on every computer and my phone and i have access to my passwords anywhere. Not sure what else i would need.

    1. KeePassUser1337 said on January 10, 2018 at 3:15 pm
      Reply

      That is my exact setup. I use a password & password file for added security. The password file has never been added to a hosted services.

    2. Wolfie0827 said on January 10, 2018 at 7:19 pm
      Reply

      This is how I use KeePass also.

    3. unyk said on January 12, 2018 at 5:07 pm
      Reply

      Does dropbox have a grid like security feature found in Lastpass? It makes sure no one can access my account even if Lastpass is hacked.

      1. Gabriel said on January 13, 2018 at 2:21 pm
        Reply

        A grid? what does that even mean? KeePass uses a file that’s encrypted. No one can access it without a password. Dropbox is just used to sync the file.

  3. Alex said on January 10, 2018 at 2:08 pm
    Reply

    Hi Martin,
    I hope you will to review bitwarden password manager.

    1. ansar said on January 11, 2018 at 7:43 pm
      Reply

      I am curious how BitWarden is received as well.

      1. Martin Brinkmann said on January 11, 2018 at 8:14 pm
        Reply

        Okay I put this on my to-review list ;)

  4. someone said on January 10, 2018 at 4:16 pm
    Reply

    I use Syncthing to sync my KeePass and everything else, but Keeweb looks promising.

  5. Alan said on January 10, 2018 at 4:28 pm
    Reply

    KeePass is the best password manager I’ve found, nothing else seems to be as secure. Really a very quality product for free.

    1. Klaas Vaak said on January 10, 2018 at 5:22 pm
      Reply

      I fully agree, which is why I donate to KeePass.

  6. Ninveh said on January 10, 2018 at 4:52 pm
    Reply

    Although KeePass has much more functionality than PasswordSafe, I feel that, for me, the latter would be a more prudent choice.

    If one can get by using a semi-spartan program residing on his/her desktop, without encrypting attached files and other nice-to-have features, PasswordSafe exhibits a reduced attack surface while eschewing the whole dotNet infrastructure.

    1. Anonymous said on January 10, 2018 at 8:40 pm
      Reply

      You’re not as smart as you think you are

  7. Anonymous said on January 10, 2018 at 5:24 pm
    Reply

    I should probably update.. but still using sourceforge.net for the download. No thanks.

    1. Clairvaux said on January 10, 2018 at 6:33 pm
      Reply

      I never found any PUPs or other malware in Kee Pass. Besides, with the availability of Virus Total nowadays, there’s little reason to distrust the download process, especially when coming from such a respected developer.

    2. fuzzi said on January 11, 2018 at 5:26 am
      Reply

      You can easily compare the checksums, which are hosted on the official site.
      https://keepass.info/integrity.html

  8. Clairvaux said on January 10, 2018 at 6:19 pm
    Reply

    There’s one thing missing from Kee Pass, though : automatic backup to an alternative folder, presumably on an external disk. There are a few add-ons for that (they are not very good), but given the critical importance of the password file, this should be part of the program, in my opinion.

    1. someone said on January 11, 2018 at 4:51 pm
      Reply

      You can already achieve that. I sync my passwords to a couple of USB drives using “synchronize active database with a file/URL”

      1. Clairvaux said on January 11, 2018 at 5:08 pm
        Reply

        Thanks ! I had not noticed that command. However, this says synchronise, not backup. So presumably, it works both ways ? Sounds a bit dangerous to me.

  9. AxMi-24 said on January 11, 2018 at 7:45 am
    Reply

    Only thing that would be nice to have integrated is support for TOTP directly in the client (feels more secure than using plugins).

    For my sync I use Tresorit (supports proper encrypted sync to phones too, unlike spideroak that demands your key for decryption on their servers when used on phones) as there is no point in avoiding use of cloud based password managers and then putting the keepass DB into unencrypted cloud storage like dropbox (US service making it even worse idea for those of us living elsewhere).

    Edit: I would argue that backup should be handled by your backup policy (obviously encrypted at home if pushed to the cloud) and not keepass.

  10. Keza_BE said on January 11, 2018 at 5:14 pm
    Reply

    Password depot is another good one. Much functions and you can automatic past the name, password, ect… on the site with one click. Just use the thunder pictogram. You can make also very strong pw’s with it but I use the PWGen app for that.

    Kz

    1. AxMi-24 said on January 11, 2018 at 7:01 pm
      Reply

      This seems to be a very bad idea as browser is the most attacked program on the computer, especially in these days of Meltdown and Spectre. It is far safer to do manual copy paste and keep the password data away from browser processes.

  11. KeZa said on January 12, 2018 at 11:32 am
    Reply

    Hi AxMi, it is not a browser program. It is a standalone but in that program you can automatic copy/paste from it without manual copy/paste….

    And I do not worry about M&S. First you need to have malware on your pc and I have checked my browers here and they are safe and surely with NoScript or likewise…

Leave a Reply