Hacker Read

malandrew · 2014-03-30 19:50:03+00:00

I don't know about 1Password, but IIRC the iCloud keychain is laughable security, with easily brute forceable pin-based security that can be performed at Apple HQ without your knowledge.

nytesky | karma 1279 | avg karma 1.62 · | 2022-12-26 10:11:13

I would love to use iCloud Keychain, but it doesn’t have extra fields, support OTP, or even really have a proper GUI.

Rumor was Apple uses 1pass internally???

reply

rajathagasthya | karma 2127 | avg karma 5.54 · | 2018-05-03 22:29:45+00:00

Is there a reason to use 1Password over iCloud Keychain if you're mostly only on Apple devices?

pertymcpert | karma 715 | avg karma 0.93 · | 2019-11-15 02:01:53+00:00

Can someone explain what 1Password gives that iCloud Keychain doesn’t? Is it just the cross platform thing?

Because I use iPhone and Mac and iCloud Keychain works really well, I don’t even think about it.

reply

matthoiland | karma 509 | avg karma 5.25 · | 2021-08-11 13:04:39

Anyone have good/bad experience moving from 1Password to Apple' iCloud Keychain?

I've recently been using keychain for new accounts, but not sure I wanna bite the bullet and go all in - just need a nudge.

reply

Apocryphon | karma 19248 | avg karma 1.97 · | 2024-05-26 21:59:26

It's kind of funny- I find myself to be on the critical side when it comes to Apple, especially on HN, but when it comes to iCloud Keychain I use it pretty unquestioning. Probably because I don't trust 1Password or other password managers to be any better, and it's a feature that's baked into the OS so adoption is frictionless.

Twisell | karma 2185 | avg karma 3.02 · | 2019-09-08 10:07:42+00:00

I tried 1Password but finally resolved to use iCloud keychain after watching this BlackHat 2016 video https://youtu.be/BLGFriOKz6U.

I mean as far as I already trust their OS nothing can really protect me from being spied by them if they are ill intentioned, so as long as they are serious and patch their security flaw on a timely manner I can live with that. Beside it come as a free plan if you don't need more than 5GB of iCloud storage.

I'd figure using an external password manager just add another third party I need to trust and the fact that 1Password offer browser app interface (on top of native) don't reassure me in any way.

Of course if I'd ever need to reassess my threat model because I can't trust Apple anymore, I will quit iCloud service at the same time as their OS and go full FOSS.

reply

rtpg | karma 18369 | avg karma 3.39 · | 2023-03-27 20:16:42

I think icloud is pretty decent as a solution, but one thing I think is kind of worrying is that it unlocks with the same "key" as your phone.

So if someone sees your PIN code, they can not only unlock your phone, they can get all of your passwords and change those passwords very quickly.

I enjoy 1Password being separate in that regard, and I would really like it if the iOS keychain would let you set a separate password in that respect.

reply

oddevan | karma 1436 | avg karma 4.31 · | 2018-05-04 15:11:30

iCloud Keychain is definitely well-integrated, but I've run into a few edge cases where it doesn't behave the way I need it to. In these cases, 1Password is better since it actually lets me dig in and edit some of the low-level details in a quality UI (versus digging a couple levels deep in system settings/Safari preferences to find/edit the password in question).

king_magic | karma 2928 | avg karma 3.5 · | 2014-03-30 17:39:32+00:00

This is useful - thanks for this. I think I'm going to give something like this a try. 1Password has been getting incredibly flakey over the past few years, and I'm just tired of dealing with it (especially in Safari).

The reason I stuck with it so long was so that my passwords would easily sync to my iPad/iPhone, but with iCloud Keychain, I think I'm finally ready to give up on 1Password.

reply

diebeforei485 | karma 4238 | avg karma 2.4 · | 2022-09-24 00:29:05

There are people who have their personal passwords in iCloud Keychain, and have work credentials/keys in 1Password.

frou_dh | karma 8157 | avg karma 3.09 · | 2021-08-11 13:12:02

Never had any reliability issues with iCloud Keychain since switching over 2-3 years ago, but obviously it's less featureful than 1Password. I liked how 1Password had a dedicated section for software licenses, but now just use a Notes note for that.

chmars | karma 5951 | avg karma 4.81 · | 2014-03-31 17:33:08

If your 1Password usage is limited to Apple devices, iCloud is another alternative. But since the 1Password keychain is encrypted, it should not matter where you store it in the end.

csilverman | karma 1831 | avg karma 5.52 · | 2022-03-17 14:04:36

If your devices are mostly Apple ones, and it’s just you, Apple’s iCloud keychain is actually very good. Syncing is excellent, and you can have things like encrypted notes as well.

I was a longtime user of 1Password myself until they got greedy, at which point I shifted to the native Mac/iOS keychain. I haven’t migrated all my passwords over, and I haven’t really seen the need to, since a lot of what’s in my 1Password vault is old stuff that’s not useful anymore. I look up passwords as I need them, save them to the iCloud keychain on whatever device I’m on, and that’s it.

The one issue with the Apple keychain is that it’s not available in Chrome—Google doesn’t let you use it because they want you to use theirs instead. It’s not a big deal for me—I just look up passwords in the Keychain app, which I had to do on 1P anyway.

reply

vishnugupta | karma 5497 | avg karma 4.4 · | 2021-08-11 13:04:56

I know what 1Password is but haven't used it.

Are there advantages of using it over Apple's built in keychain?

Would appreciate if someone who has used/uses 1Password could comment on this.

reply

MeinBlutIstBlau | karma 354 | avg karma 0.24 · | 2020-10-22 21:35:44+00:00

Apple has keychain linked to an icloud account but it's subpar of a password manager at best. Most mac people who I know that are techy just use lastpass.

nreilly | karma 218 | avg karma 3.82 · | 2021-08-11 18:28:43

With the Apple iCloud Keychain supporting one-time (the google Authenticator style) passwords from the next major Apple OS release, I have no reason to continue to use 1Password.

cujo | karma 731 | avg karma 2.63 · | 2019-07-12 13:18:41+00:00

Correct me if I'm wrong, but you can't share passwords with iCloud Keychain, correct?

My workflow involves sharing certain accounts with family members and 1Password supports that. For now, that's the killer feature for me.

reply

bjohnson225 | karma 240 | avg karma 2.73 · | 2020-06-05 17:13:09

Why do you think Apple is crippling third party password managers? If you want to use 1Password instead of iCloud Keychain then there’s support in iOS to do exactly that, and if you enable it then it will auto fill in the same way it did before. I personally find the 1password experience better on iOS than any other platform I’ve tried.

y_molodtsov | karma 112 | avg karma 1.19 · | 2018-05-20 14:36:18

iCloud Keychain is pretty good, but it tragically fails in the followings cases: * Any browser other than Safari. * Apps that MacOS/iOS don't parse for password fields for some reasons so you can't generate a password right there — and it's a huge pain to add them manually, practically impossible on iOS. * Cloud access (if you need your account and don't have any of your devices). Your Keychain is in the iCloud, but you can't access it from icloud.com

So Apple could easily make it much better but they haven't.

reply