Spolsky's cross-platform password management method

Filed under: Windows, Macintosh, Linux, Productivity, Freeware, Browsers

Spolsky's cross-platform password management method

by Jason Clarke Sep 22nd 2008

Joel Spolsky's name is well known and highly respected in the software community. When he talks, people listen. So it was with a bit of interest that I noted his blog post about his truly cross-platform password management method.

Joel uses the recently-graduated-from-beta DropBox on each of his Windows, Mac, and Linux machines to share files amongst them. He then uses Password Safe on his Windows machine, and Password Gorilla on his Mac and Linux machines, since it is compatible with Password Safe files. He stores the encrypted password file in his DropBox folder, making it available on every machine, and even better instantly synchronized on every machine.

This looks like a slick approach to an age-old problem, and it's great to see an accomplished developer hacking together a useful approach out of existing tools rather than feeling the need to go to the drawing board and write their own solution.

Tags: cross-platform, joel-spolsky, passords, password-management, spolsky

Reader Comments (Page 1 of 1)

LeeH said 10:29AM on 9-22-2008

I have lots of respect for Joel Spolsky, but I'm not sure that I'd be so keen to follow his example and put my PasswordSafe file on a web-based application. If I did, I'd make sure that BOTH my DropBox account and the PasswordSafe file have VERY strong passwords: see http://www.securiteam.com/windowsntfocus/6C0022AEVQ.html

Danny Stewart said 10:35AM on 9-22-2008

According to that page, the vulnerability only affects PasswordSafe 1.x and 2.x. The current version is 3.14.

Jash Sayani said 11:18AM on 9-22-2008

I totally agree. Why would anyone just save all the passwords on a "hackable" file and upload it for the masses !?!?!?

Jonathan Harford said 10:32AM on 9-22-2008

I use the exact same method, except I use Windows/Mac-only FolderShare (https://www.foldershare.com/) and KeePass (http://keepass.info/).

Mr. Spolsky's choices look like they might indeed be superior.

mxxcon said 11:51AM on 9-22-2008

I'm using KeePass v2 with KeePassSync plugin with www.digitalbucket.net that does exactly the same thing.

PS_4 said 6:40PM on 9-22-2008

I use paper. Believe it or not, it works.

Joe Siegrist said 6:48AM on 9-23-2008

You could do this.... Or you could do yourself a favor and do it right by using LastPass.com -- You get all the benefits Joel lays out here (cross platform, locally encrypted passwords, easy syncing via sending your encrypted data to a server) plus tons of other features with LastPass: Browser plugin for IE/Firefox, website access, convenient password generation, no copy and pasting, automatic form fill, import/export from and to legacy password managers, and more.

Aalaap said 1:42AM on 9-26-2008

I use Hashapass. No software to install, no cross-platform trouble, no data stored in the cloud that could be compromised.

Dave said 10:32PM on 11-16-2008

Check out LastPass
https://lastpass.com
It looks like a much better cross platform solution.
I found out about it here: http://ubuntuforums.org/showthread.php?t=202896&goto=newpost

Featured Time Waster

Civiballs is a beautiful, soothing physics puzzle Time Waster

I have an absolute weakness for physics games, and while Civiballs isn't the strongest physics-based game, what it lacks in the physics department it makes up for a few times over in style and fun.

In Civiballs, you are presented with a few colored balls, and your goal is to get those balls into the same-colored urn on the level. The "civi" part of Civiballs is that there are 3 sets of levels to play, each representing a different civilization. While the civilization doesn't affect gameplay, the artwork for each level is beautifully themed to it's appropriate era.

To play the game, you are given only one tool - a sword with which to cut the chains that are holding the balls. The puzzle part of the game is in figuring out what order, and with what timing to cut each chain. Do it right, and all the right balls end up in the right urns, with no stray balls entering an urn (a no-no). Do it wrong, and you get to start over again.

Civiballs is not terribly deep on gameplay; the entire game can be completed in about 15 minutes. But if you enjoy this type of game, it will be a very enjoyable 15 minutes.

View more Time Wasters