STOP USEING LASTPASS NOW!!!!!

cananon1

Member
May 19, 2015
99
47
60
CmHOj7Z.jpg




* [dashlane](https://www.dashlane.com/) most similar to LP, free basic, $40/yr for LP Premium equivalent
* [1Password](https://agilebits.com/onepassword) 1-time charge (per major revision- thanks /u/Outlandish_Rhubarb).
* [Encryptor](https://encryptr.org/) open source cloud-based.
* [KeePass](http://keepass.info/) open-source local (or cloud of your choosing) based.
* [Secret Server](http://thycotic.com/products/secret-server/) Enterprise password manager
* [Enpass](http://enpass.io/) 1-time charge, wide platform support, choose your cloud.
* [AuthAnvil](http://www.scorpionsoft.com/) Enterprise Auth suite.
* [Yith Library](https://www.yithlibrary.com/) Free open source cloud-hosted, looks like poor integration.
* [PassPack](https://www.passpack.com/) "Probably safe"

**To Leave LastPass:**
1. Login to your [LastPass account](https://lastpass.com/?ac=1&lpnorefresh=1)
2. From the menu on the Left, Tools->Advanced Tools->Export To...
3. Copy the data shown to a text file (Notepad or NotePad++), save as or change extension to csv.
4. [Delete your LastPass Data and close your account.](https://lastpass.com/delete_account.php)

Thanks to redditors for info.
 

cananon1

Member
May 19, 2015
99
47
60
hey just updated their blog:

Update: October 9, 2015 @ 12:02 PM EST Thank you for all the support we have received in response to our exciting news today. To address the concerns that some in our community have raised, I want to personally assure you that this is good news for our users. First of all, we (LogMeIn/LastPass) have no plans to change our existing business model. Secondly, this acquisition provides us with access to resources that will enable us to innovate faster, as we continue to strive to deliver an even better product than the one you have come to know and love. It is also important to note that the current LastPass team is staying in place and remains committed to deliver on the promise of privacy, security and convenience that has been our mission since day one. I appreciate and am proud of the passion of our community, and we will continue to work hard to maintain your deep loyalty. – Joe Siegrist

Might offer solace to some LastPass users but personally I still plan on switching back to KeePass.
 

cananon1

Member
May 19, 2015
99
47
60
keepersecurity
Glad to assist any unhappy or adversely affected customers to migrate onto the Keeper platform - we're currently offering a 50% off discount code for any personal users and 30% off for Enterprise users. Just shoot a note to [email protected].

they also support windows phone even :)
 

L.

Well-Known Member
Sep 1, 2015
120
111
128
I dont think anything will change for us


LDO7COR.png
 
Last edited:

cananon1

Member
May 19, 2015
99
47
60
thats what logmein said about hamachie .... and other shady stuff read comments on reddit you will know more ... this is bad and fuck logmein the guy is a asshole. that made logmein

I dont think anything will change for us


LDO7COR.png
 

L.

Well-Known Member
Sep 1, 2015
120
111
128
thats what logmein said about hamachie .... and other shady stuff read comments on reddit you will know more ... this is bad and fuck logmein the guy is a asshole. that made logmein

Can you give me some reddit posts about it?
 

cananon1

Member
May 19, 2015
99
47
60
Ponkers 0 points 23 minutes ago*

I remember when the guy who owns LogMeIn posted here on Reddit, asking for opinions on Hamachi's skin. Everyone, literally every single post was saying "don't skin it, just go with the OS default" but he refused to acknowledge a single one, instead he referred to other opinions from elsewhere that backed up his burning desire to make a skin for it. He didn't provide any source for those "majority of people" opinions when asked.

I do not trust this person to make anything worthwhile if he can't listen to the people he's asking for opinions from.

xirnibor 1 point 29 minutes ago

this sucks for anyone that has gotten screwed by logmein when they changed their payment structure, and anyone who actually likes lastpass. woof - time to start looking for alternatives.

tsmit50 5 points 2 hours ago

I know a lot of people from Logmein.

As they branch out, into new companies, they take this business plan:
  1. give product away for free.
  2. Make everyone rely on you.
  3. Change pricing plan so you have to pay for said previous free product.
I know of at least three companies in Boston right now working to this business plan.

Crazy.

ScreamingDoktor 1 point 56 minutes ago

That's exactly what they did to Hamachi.

Fuck LogMeIn.


just to name a few just read the reddit post over time you will see more why logmein sucks and even google Why logmein sucks...
 

cananon1

Member
May 19, 2015
99
47
60
For those asking why Logmein is bad news here is why, Logmein rose the price of their products by up to 1000% for some people about a year ago. It was an obvious money grab and poor business practice.

Companies (LastPass) that get bought out by money grab companies usually don't care nearly as much as the original company, they almost always make cuts, but most importantly money grab companies usually don't spend alot on security. Being as this is a password protection company makes it worse as I wasn't 100% trustfull of Lastpass since their security breach but no way I trust a Logmein company that just bought you out to keep my passwords secure.

It's equivalent to if Symantec were to say, they are buying veeam. The software would go up in price and it would be unusable within a year or two.
 

Asphyxia

Owner
Administrator
Apr 25, 2015
1,845
2
2,199
327
I can not help but to agree, we are truly fucked in terms of lastpass being trustworthy (sell outs only care about money and acquirers usually only buy/invest to make more money --- that is basic capitalism guys). When can we get an open source version of something like lastpass to host our very own custom password repository (vault)? :(

I am a security guard for a sellout factory, you know what? My position used to be paid much more, they used to staff at least twice as many people. That is called cutting corners. Everyone (most workers) is paid less, less people are staffed and the reasoning for this nonsense is cutting costs. The problem is that everything might make more money for the people at the top (in the leather chairs that have built-in back massage stuff)....... but for people on all other levels like the workers (usually) and especially the customers, there is definitely suffering. The security work I do is honestly a joke. Literally, call me an insecurity guard --- please. The amount of attacks I have understood being completely possible and know would be successful are in the tens and I am only counting the critical vulnerabilities (physical, social and digital threats).

The point is this, many companies demonstrate capitalism. What do they (owners/investors) complete their day for? Not usability, not security, not customer satisfaction, not health, not global peace, not anything good for everyone. They complete their day for their very own selves --- for money. I will never sell R4P3 out, I will never overprice R4P3 and I will do anything and everything practical (realistic) to keeping our system (community) confidential, with integrity and available. Your account authenticity is your responsibility though, do not use "password" as your password. If you ever have a question about R4P3 pricing, expenditures and why we do what we do --- just drop me an inbox and I will be more than happy to elaborate on our choices, no shame here. ;)
 
Last edited:

cananon1

Member
May 19, 2015
99
47
60
use keepass and install keefox for local database of your password and i iwll inboxs you asphyxia i would love to know more :)
 

tagKnife

Well-Known Member
Oct 2, 2015
343
270
146
Im going to bump this since i do have some input etc.

I've been using lastpass for 2 years now and wasn't too bothered about the acquirement by logmein. To be deathly honest, it is scary, if they force a paid model i could loose all my passwords. but also, i don't mind, because if they do, do that im pretty sure they would still allow you to download your passwords. if they didn't I would sue them, because what they are storing and keeping safe is MY intellectual property, and they have no right to deny me access to my login information to sites and programs they do not own the rights to. I even store my SSH key-pair, PGP key-pair and national security number in lastpass, stuff I need and use to run my company.
The British courts would rule in my favour since that would violate the computer missuse act 1999, impairing the use of computer system or software. Since my servers require my key-pair to be used, if lastpass denied me access to those they are impairing the use of my servers, Also I'm pretty sure that would violate ransom laws too. Don't quote me on that.
 

Derp

Retired Staff
Contributor
Apr 30, 2015
933
1,014
217
Im going to bump this since i do have some input etc.

I've been using lastpass for 2 years now and wasn't too bothered about the acquirement by logmein. To be deathly honest, it is scary, if they force a paid model i could loose all my passwords. but also, i don't mind, because if they do, do that im pretty sure they would still allow you to download your passwords. if they didn't I would sue them, because what they are storing and keeping safe is MY intellectual property, and they have no right to deny me access to my login information to sites and programs they do not own the rights to. I even store my SSH key-pair, PGP key-pair and national security number in lastpass, stuff I need and use to run my company.
The British courts would rule in my favour since that would violate the computer missuse act 1999, impairing the use of computer system or software. Since my servers require my key-pair to be used, if lastpass denied me access to those they are impairing the use of my servers, Also I'm pretty sure that would violate ransom laws too. Don't quote me on that.
Same here
 

kingston

Contributor
Feb 10, 2016
243
151
128
Does anybody know for what sum this "thrilling" deal took place? I hate it how LastPass is hyping and calling it a great day. For them perhaps and money is all they care about in the end. Why don't they just call it straight instead of this "joining" bullshit: we made tons of easy money selling the company, right now it looks like nothing has changed but soon LastPass brand will just disappear. And users and their trust and security? Who cares!

And who will aquire LogMeIn? Amazon, Oracle, Microsoft, Google? You name it. Yet another step towards reducing our privacy has been made. And it will continue.
 
Last edited:

Derp

Retired Staff
Contributor
Apr 30, 2015
933
1,014
217
And who will aquire LogMeIn? Amazon, Oracle, Microsoft, Google? You name it. Yet another step towards reducing our privacy has been made. And it will continue.
It's all a giant loop. They start as a small team interested in programming and stuff. Then they get big. And then they get bought by some crazy ass rich company.

Solution:
Just code your own god damn password manager x)
 

kingston

Contributor
Feb 10, 2016
243
151
128
It's all a giant loop. They start as a small team interested in programming and stuff. Then they get big. And then they get bought by some crazy ass rich company.
Especially those backed with unlimited gov money. See, this is strictly for your own good :)
 

tagKnife

Well-Known Member
Oct 2, 2015
343
270
146
It's all a giant loop. They start as a small team interested in programming and stuff. Then they get big. And then they get bought by some crazy ass rich company.

Solution:
Just code your own god damn password manager x)
Then sell it right? EZ money EZ life
 

Derp

Retired Staff
Contributor
Apr 30, 2015
933
1,014
217
Then sell it right? EZ money EZ life
Nope.
Release the source so that everyone can benefit :D

Edit:
It doesn't necessarily have to be something big. Just a simple utility that stores passwords encrypting them using aes would do (If you don't want something too sophisticated)
 

tagKnife

Well-Known Member
Oct 2, 2015
343
270
146
Nope.
Release the source so that everyone can benefit :D

Edit:
It doesn't necessarily have to be something big. Just a simple utility that stores passwords encrypting them using aes would do (If you don't want something too sophisticated)


well how lastpass do it is the hash you master password 10000 times with hash_pbkdf2 and then use the raw output as the key to encrypt your separate password database. your master password is never stored by lastpass. you successfully login by successfully decrypting the password database tied to you email/user

edit: Here is a very useful script I made to show and test all possible hashes avalible on php;

Code:
vagrant@homestead:~/sites/steamgiveaways$ ./artisan t
Psy Shell v0.6.1 (PHP 7.0.1-1+deb.sury.org~trusty+2 cli) by Justin Hileman
>>> $salt = mcrypt_create_iv(17, MCRYPT_DEV_URANDOM);$algos = hash_algos();for($i=0; $i < count($algos); $i++){ $algos[$i] = [$algos[$i] => base_convert(hash_pbkdf2($algos[$i], '?@$sW0rD', $salt, 10000, 67),16,31)];}dd($algos)
array:46 [
  0 => array:1 [
  "md2" => "c58ksjmsu2qjngs7hlfmbu4u9k7lsanfikr8acio4c77nnmlb8ior2"
  ]
  1 => array:1 [
  "md4" => "8080fcdbr5r6lmf4t0ke30guc494qdrb50kdjsouemqai5pbokmjto"
  ]
  2 => array:1 [
  "md5" => "k603idtm6e1g84csh3sgiippnbk0uqgbh9iif95qk831ba73lngh2q"
  ]
  3 => array:1 [
  "sha1" => "7h2so18cdfq7hp85l49kl8sj5lptdj88uma16l44jcb32fq6fbo9td"
  ]
  4 => array:1 [
  "sha224" => "pbaemlogkfsksiihqiubta0104i5p3c27j6g1ldou30ruia9jaanih"
  ]
  5 => array:1 [
  "sha256" => "24q8bna63083dai17108r70rr4blj0t7jp08kogr9mh9q094mgi9ac"
  ]
  6 => array:1 [
  "sha384" => "ca7fk65oeo3e6d0qjgfasg3m7ofqslbnurnb9gdef9gdpkpl9i1j58"
  ]
  7 => array:1 [
  "sha512" => "mo3eia208hg5u4aoi8mgo4l63htorjj79h1omu9dl0tei4rs5ct1t5"
  ]
  8 => array:1 [
  "ripemd128" => "13ah8tkojb02scuet7c4nhaofkta34ajnmsnugtgt6k49pj61m5otj1"
  ]
  9 => array:1 [
  "ripemd160" => "fcnfa23l62bgh5mae1e03rn92jsuis50g88mjk2fp8t6k0citf3956"
  ]
  10 => array:1 [
  "ripemd256" => "u0ho48e51m17nrr93d22jducs1dpq5i4u498uub5k83cr820ll2ok6"
  ]
  11 => array:1 [
  "ripemd320" => "kpmus7t5rah1pl03d3e69s278dqus79dl7t28hdkpddqs9du3sb5ns"
  ]
  12 => array:1 [
  "whirlpool" => "2da44q1653m8ikkcreiucfgi3do1sqjp1frcfpm3ogc18omi0lgrf4"
  ]
  13 => array:1 [
  "tiger128,3" => "7kpotk9esl870pdp8t8bjp2aidm4ab7baddb89dhnh44gnefgel8q"
  ]
  14 => array:1 [
  "tiger160,3" => "1bbuegc2k0el8pq39haqo15clpli9obac0sjnp66n7rq8r1fhak7lt4"
  ]
  15 => array:1 [
  "tiger192,3" => "1ar26age6thg9f9a33p3lf0mm6g540cnpoctoglgqst9652cn6a2013"
  ]
  16 => array:1 [
  "tiger128,4" => "tsl3ol0jgtmaktn452mlgh11dnuhunq37f1ffbl9at9ldh57ap0udk"
  ]
  17 => array:1 [
  "tiger160,4" => "engoo3rablhr0s9c9qc27ooclr2ske2elmf24j6n7i8hqlq1rcemiq"
  ]
  18 => array:1 [
  "tiger192,4" => "138320ni10psp9pna3cqgr8sn4epbo6hdg83u7nsdr0pt2l8nhku748"
  ]
  19 => array:1 [
  "snefru" => "q0tf1qe136uok97o2armfaa85fcnufqk42bdibm9tisija8in70ne5"
  ]
  20 => array:1 [
  "snefru256" => "q0tf1qe136uok97o2armfaa85fcnufqk42bdibm9tisija8in70ne5"
  ]
  21 => array:1 [
  "gost" => "nke02aedo1fhd4o5rm5uthj83f6dnff24nl439iibolk3cm5e0m9c7"
  ]
  22 => array:1 [
  "gost-crypto" => "4q2n6j68h3fjlsda73to06q2jpqmfepodkfc891n2r7qge43td9m3l"
  ]
  23 => array:1 [
  "adler32" => "j2bcotm9oo0os6529innpg4902kc9i42ut0lhht8spq2p9r344ruo"
  ]
  24 => array:1 [
  "crc32" => "b8lq2j8pgaij45mfjbq44fr2ntoh849m2hjr0hch3169mt117sihkj"
  ]
  25 => array:1 [
  "crc32b" => "t1crng1s57lbiifgl6gmjpttqlg6d508of0ee91csmgr3ef35fuph7"
  ]
  26 => array:1 [
  "fnv132" => "oiq79a5htpcthr4im760k74ncau66qcu1ni6idgmofheae2ffbuu3i"
  ]
  27 => array:1 [
  "fnv1a32" => "m9sboe0ck3bmuag6gj04r11hra95gun27klh2kadbtdun0j6j26unq"
  ]
  28 => array:1 [
  "fnv164" => "qgun088hkdt23pu74umb2dgod08cgsasc6sbek6jr81fftj6ha3fa4"
  ]
  29 => array:1 [
  "fnv1a64" => "iol4bhqtc8msih4q61l2lgajuuicl7rtflg5paqbaouurq2njq9cgg"
  ]
  30 => array:1 [
  "joaat" => "95o2dltaleo4nfk0f2p11i0q9mkigbb7a6mbig5n1od9lpr8a8i8q3"
  ]
  31 => array:1 [
  "haval128,3" => "huqrla3k5otmkcjro2s4mf0r7cjqulm3bddki8qhronoahi3km7981"
  ]
  32 => array:1 [
  "haval160,3" => "12kdll3und2js13du535jeh2efoob1htj13ju0e4rsdldjo904t6uai"
  ]
  33 => array:1 [
  "haval192,3" => "13canlg1mtkqr67qucfbpnanpr6dborpjchg4mmbsu96tnsunecnh10"
  ]
  34 => array:1 [
  "haval224,3" => "162kn8kbh7d8fktk7o8e84ho0i6s7pm2se5etjsn9201n4lrff30ppj"
  ]
  35 => array:1 [
  "haval256,3" => "10khemq2f77b8j041gfgogrj34mrijbbc9ihbkr44q7s4dt0887720r"
  ]
  36 => array:1 [
  "haval128,4" => "7ph6fkf3lbajtr8n35263kd38dgs98i1k0jsnl1p4us0u3eklou6hi"
  ]
  37 => array:1 [
  "haval160,4" => "1kn903nu3thocr24kktqhfih8iarnl64nu4etcrek0qo16idb3o4dc"
  ]
  38 => array:1 [
  "haval192,4" => "apc8rc6firl7csareu983jugnutgbe0dtjhodibu7h70bf1pf0msth"
  ]
  39 => array:1 [
  "haval224,4" => "kc6obl0ca2ks7hfhacend7rnao3p6ga93l6n9o5299qpkhjn74c52s"
  ]
  40 => array:1 [
  "haval256,4" => "10lr182cmlricmk471sth5qdbm95l2fj16ctc89rf2ccg92j1772g4j"
  ]
  41 => array:1 [
  "haval128,5" => "hsb1odhga5i2hgiontso3p2bc8ba4q08skuke6akma6drsagr1q9td"
  ]
  42 => array:1 [
  "haval160,5" => "cgphndlne8m8csh5mtl1g1c5ils72ahc1qksk4cqhsmbmc3982m42k"
  ]
  43 => array:1 [
  "haval192,5" => "15hpo0q6864e7sgdlrt7i7lqfiggs364drdtk57hqije1n3uga1homg"
  ]
  44 => array:1 [
  "haval224,5" => "1517u7qos90edp90hp5dg0b7ijf7enct1lh14rlc6ronfhnjua05t19"
  ]
  45 => array:1 [
  "haval256,5" => "m1irp865ua2i0n6m6de4ul0d5ao66gqe668n9hm11413u1099tsl4f"
  ]
]
 
Last edited:
Top