Keepass(X)

KeePassX (GNU GPL v2) is a multi-platform port of KeePass for Windows, an open source and cross-platform password manager. This utility helps you to manage your passwords in a secure way. You can put all your passwords in one database, which is locked with one master key or a key-disk. This lets users only need to remember one single master password or insert the key-disk to unlock the whole database. The databases are encrypted using the algorithms AES (alias Rijndael) or Twofish using a 256 bit key. KeePassX currently uses same the database file format as the KeePass 1.x (Classic) password manager software for Windows.

To install KeePass, download and run the KeePass-x.xx-Setup.exe file and follow the wizard.

Available from repository on most distros:

$ sudo apt-get install keepassx

It will appear in your menu.

A “first steps” tutorial can be found here

Assume that anything that can be encrypted can be decrypted. All an attacker needs are the algorithm, and the keys. If an attacker gets a hold of this information, it's game over.

  • Keep the database on a removable medium like an encrypted USB stick and only plug it in when you need it.
  • Use a second encrypted stick to keep a backup of the password database on.
  • For added security, set up the database to use a password as well as a keyfile.
  • Try to always close off the application instead of it being closed by your machine shutting down. It uses a lockfile to prevent access by other processes. Quitting the application removes it. If not, and whenever you get a message that you cannot open your database, check on the USB in the directory where the database resides that there isn't a lockfile blocking access. If there is a lockfile while the database is not open for you, just delete the lockfile.
  • On rare occasions a database is truly corrupted. That backup on that other stick, phew. :D