@keepassxc@fosstodon.org
@keepassxc@fosstodon.org avatar

keepassxc

@keepassxc@fosstodon.org

KeePassXC is a modern, secure, and open-source password manager that stores and manages your most sensitive information.

You can run KeePassXC on Windows, macOS, and Linux systems. KeePassXC saves many different types of information, such as usernames, passwords, URLs, attachments, and notes in an offline, encrypted file that can be stored in any location, including private and public cloud solutions.

Team email PGP key: 105D 8D57 BB97 46BD

This profile is from a federated server and may be incomplete. Browse more on the original instance.

codiflow, to NoStupidQuestions German
@codiflow@social.tchncs.de avatar

@keepassxc Are there any issues with your Patreon account? My yearly support package is not working anymore and the money has been charged back. All tries to recover it failed and it does not seem to be a Patreon issue. It more seems like the support packages of the KeePassXC project have been removed completely. 😅

Does this have to do with this recent post? https://fosstodon.org/@keepassxc/112417353193348720

keepassxc,
@keepassxc@fosstodon.org avatar

@codiflow hello, Patreon is saying your payment method was declined.

keepassxc,
@keepassxc@fosstodon.org avatar

@codiflow all we can see in Patreon is that your payment was declined. You should contact Patreon for more details.

keepassxc, to random
@keepassxc@fosstodon.org avatar

Following the recent discussion around the Debian decision to ship KeePassXC without any of its optional modules, we've seen some extreme misconceptions floating around the internet regarding what the WITH_XC_NETWORKING=OFF compile flag actually does.

Let us be clear: KeePassXC does NOT "randomly" connect to the internet in the background, regardless of whether you build with the flag on or off. Claims to the contrary of KeePassXC "surfing in the background" or "calling home" are false.

1/4

keepassxc,
@keepassxc@fosstodon.org avatar

What this flag DOES NOT do is sandbox KeePassXC in any way. It will also not remove Qt's internal networking modules, since these are still required for certain offline functionality such as URL parsing and local sockets (blame Qt for not separating this functionality). It will also not prevent a local attacker from loading other DLLs/SOs/DYLIBs containing network code at runtime.

4/4

keepassxc,
@keepassxc@fosstodon.org avatar

That's it. That's all that is removed from your build when you disable the flag. There is no web server running or anything, it's only client code requiring a manual action that is removed (as well as a link dependency to OpenSSL, which may be more significant).

3/4

keepassxc,
@keepassxc@fosstodon.org avatar

KeePassXC connects with the internet in only three situations:

  1. to check for updates (we ask you first if you agree to that and this feature is disabled in downstream packages such as Debian's anyway)

  2. when you manually click the button to download a website's favicon on the Edit Entry form

  3. when you decide to check your credentials against the online Hibp service (again, by explicitly clicking a button).

2/4

keepassxc,
@keepassxc@fosstodon.org avatar

@neo This is not for those spreading misinformation, it’s for those receiving it without knowing the context.

keepassxc,
@keepassxc@fosstodon.org avatar

@larsmb Yes. Although that is a separate flag that was also turned off.

keepassxc, to random
@keepassxc@fosstodon.org avatar

Debian Users - Be aware the maintainer of the KeePassXC package for Debian has unilaterally decided to remove ALL features from it. You will need to switch to keepassxc-full to maintain capabilities once this lands outside of testing/sid.

keepassxc,
@keepassxc@fosstodon.org avatar

@pootriarch this might end up flowing down to ubuntu at some point.

keepassxc,
@keepassxc@fosstodon.org avatar

@djinnsour uh ok. Do you not trust us or debian. It is unclear from your post.

keepassxc,
@keepassxc@fosstodon.org avatar

@bkw777 @tab2space @paul_ipv6 why would we develop and maintain and personally use a feature we don't trust. Use your noggin, we eat our own dogfood.

keepassxc,
@keepassxc@fosstodon.org avatar

@juliank @mvgorcum @tuxwise we have multiple, MULTIPLE, means to get in touch with us. We moved to matrix years ago, but still bridge to IRC. Easily found through our Readme. Sorry this went down this way but it does end up having a huge negative impact on us when downstream shit breaks unexpectedly.

keepassxc,
@keepassxc@fosstodon.org avatar

@juliank @stardust @tuxwise I disagree with this statement on a fundamental level. If you see Debian as an expert tool for a very specific expert target group, then fine, whatever. But Debian is the base for a general-purpose operating system for millions of users with no technical background or simply no nerve and time to deal with things like this. You cannot and should not expect these users to know about any obscure text files, let alone read and understand the tech babble that's in them.

keepassxc,
@keepassxc@fosstodon.org avatar

@juliank @stardust @tuxwise I certainly don't fire up a text editor and check the NOTES files first before I run apt upgrade or click the "Install now" button on the update reminder popup and I am probably much more of an expert user. We can only implore you to revert your decision. Your concerns about supply chain attacks in particular are certainly not unfounded, but you cannot export the complexity of this decision to your users in a way they will not and cannot understand.

keepassxc,
@keepassxc@fosstodon.org avatar

@juliank @stardust @tuxwise That would certainly be much appreciated. Keep in mind that "keepassxc" refers to the full package in all other Linux distros and it's how we ship it ourselves for all platforms (including the PPA).

keepassxc,
@keepassxc@fosstodon.org avatar

@dside @IzzyOnDroid The PPA is maintained by us and will not change in this regard.

keepassxc,
@keepassxc@fosstodon.org avatar

@kraftner If you are referring to our own upstream PPA, then yes, that will continue to ship the full package.

keepassxc,
@keepassxc@fosstodon.org avatar

@fa11_1eaf No.

keepassxc,
@keepassxc@fosstodon.org avatar

@moose Yes, although that is off in downstream packages anyway.

keepassxc, to random
@keepassxc@fosstodon.org avatar

👋 Hey there! Whatcha doing tonight? That's what we thought, you are installing KeePassXC 2.7.8! We just released and are happy to provide plenty of improvements to our passkeys support and a slew of bug fixes and enhancements to make you feel awesome.

https://keepassxc.org/blog/2024-05-06-2.7.8-released/

keepassxc,
@keepassxc@fosstodon.org avatar

@fupanda which issue is that?

keepassxc,
@keepassxc@fosstodon.org avatar

@spipau Clear the settings ini file for your Flatpak installation and reinstall. There was a bug in the first package version of 2.7.8.

keepassxc,
@keepassxc@fosstodon.org avatar

@fupanda Are you running on a VM with only 1 CPU or on an actual computer with only 1 CPU?

machocam, to random
@machocam@mastodon.social avatar

@keepassxc is there an official CLI for keepassxc?

keepassxc,
@keepassxc@fosstodon.org avatar

@machocam keepassxc-cli comes bundled with KeePassXC.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • megavids
  • InstantRegret
  • rosin
  • modclub
  • Youngstown
  • khanakhh
  • Durango
  • slotface
  • mdbf
  • cubers
  • GTA5RPClips
  • kavyap
  • DreamBathrooms
  • ngwrru68w68
  • JUstTest
  • magazineikmin
  • osvaldo12
  • tester
  • tacticalgear
  • ethstaker
  • Leos
  • thenastyranch
  • everett
  • normalnudes
  • anitta
  • provamag3
  • cisconetworking
  • lostlight
  • All magazines
    •