They had a great product for a long time but some of the worse licensing decisions I've ever seen. It went from being completely free to several thousand dollars overnight without any additional features, support, etc being offered. And meanwhile development was stagnant with only weird changes to the UI and punitive changes to free users being rolled out.
We would have been more than willing to pay for licensing. Even in the end it was the one product we found that could do some really cool stuff remotely (like recover a frozen Windows system and reboot it into safe mode). But they just handled the business side of things like complete idiots.
The chrome app was awesome. The website sucks.
But RealVNC's products are all built on that same VNC protocol...? At least I see many things referencing it and nothing indicating that they don't use it.
The only novel-looking thing I see on RealVNC's website is adaptive bitrate, which I don't think I've seen in the open source servers.
$10 to TechSoup gets you 60% off list price for TeamViewer. Your license pays for simultaneous controlling sessions, so our plan that would have cost $200/mo. is $80.
We've had access to TechSoup forever, but we keep forgetting to take advantage of it. We were able to make our money go a lot farther than it would have this year because we started looking through their catalog again.
I hope to not have to work for a PE-owned company in the future, as their goals (to position for their exit, usually 3-5 years after initial purchase) often result in short-term oriented choices that hurt a company's long term potential
PE "support growth" for forcing loans on the company with expectation they'll be paid back, which makes the company operate very differently than a VC-backed growth startup.
Keeping 100+ machines up and running, and caring for individual ones sounds like a whole lot of work. Admittedly we got away with it because those were lab computers used by students, and data persistence did not matter as much (each student had a samba share mounted, which was on a central server and had backups)
I do wonder if full disk cloning + sysprep is still an option with newer versions of windows.
On modern networks and storage hardware, reimaging a PC from scratch is sometimes faster than rebooting Windows after an update (and always faster than a "feature" update).
Anyone looking into mass image deployment should check out Fog, because it is free and works pretty well.
Worst job I have ever had though. The amount of politics that go on in a public school is ridiculous.
Our problem with Deep Freeze was getting it to work nice with our locally installed software mixed our custom Novell stack that pushed software dynamically based on logged in users. So we relegated it to computer labs that had no local software.
It's about trust and expectations.
If a software company blindsides me with a 1,000% price increase overnight (or ∞%) without advance warning, then how can I trust them to warn me in advance about other major changes in the future? If they don't have the decency to give advance notice about that, can I trust them to give me advance warning before they change major features, or plan to have downtime, or plan to shut down--which becomes a real concern if they're fumbling around with pricing changes.
SSO and access management services are things I want to have zero nagging concerns or doubts about. Anything that shakes my trust in those services is enough to make me consider other options.
No one likes going into another budget meeting because some vendor didn't give you warning and you need to adjust in the current fiscal year. Your company will be remembered and not in a good way. If you sell software to businesses you really, really need to understand corporate budgeting and the process they go through. Heck, if you sell to Federal (US) entities you better know the significance of October and schedule accordingly.
ReSharper alone would easily save me that much per year in productivity gains.
I moved over to Ubuntu from Windows, so picking up Rider as my replacement for Visual Studio was well worth it - and at about 1/3 of the price of Visual Studio alone (and having the ReSharper features built in) it was a bargain.
edit: LastPass is owned by LogMeIn, that's why I mention this alternative.
LastPass started as $1/month, which I thought was a great deal. I started using it in 2011, and never really paid attention to the fee.
Then, it got bought by LogMeIn, and in 2017 they upped the price to $2/month. Last year they upped it to $3/month ($39..that's when I noticed the charge). That's right: for 6 years it was one price, which tripled in 2 years without any enhancements as far as I could tell.
Needless to say, this will be my last year with their product. I'm using KeePass2 locally on my devices, and it seems to do what I need.
Their web interface won't present the textarea field for me to copy the key for use. I'd have to resort to the export options to get the plaintext and Ctrl+F for the key.
They're AWS keys, so LogMeIn's own staff should've had the same gripes I have, but it's just not fixed yet.
I'm going to take a look at BitWarden and see if I can move over as a winter break task.
I did it in 20 minutes this morning, would highly recommend!
All in all, it took me an hour of time, and 13 dollars to buy a domain since I didn't already have one.
Now I need to permanently move my wife off of lastpass to bitwarden, so I can see how the shared folders work, etc.
Any reason why you'd say unfortunately there? I see it as a pretty big perk rather than an unfortunately. But I would also like to understand a bit more so I can pass along any necessary feedback to our team.
1Password Security Team
It bummed me out - I really like 1pw. And I still don't have my password situation back to the same level of ease-of-use yet, but I switched to control the timing. Storing my password DB on other people's computers is simply not going to happen.
The only reason I ever got onto 1Password in the first place was because I didn't have to use any cloud storage, and could use wifi sync between my devices.
I was extremely disappointed as that started to change. It was an absolute nightmare having to retrain all family members in the nuanced differences in how Bitwarden works compared to 1Password. I hope I don't end up having to eat that cost a second time.
There is nothing about “being a cloud service” that makes 1Password unusable for your family other than your own objections. On the contrary, it probably protects your family against their own incompetence compared to messing with local files, or depending on you to run a server for them (what happens if you’re hit by a bus?)
Obviously that doesn’t mean that Bitwarden isn’t a superior solution, but that’s not why you switched them over.
If 1) is true then the family doesn't have to do what they say. They choose to do what they say because they value their technical expertise. Part of which is a preference for non-cloud solutions. That they don't share it seems irrelevant if they've already decided oarsinsync knows better. If they're like the average person then they probably don't value any password manager much at all beyond oarsinsync saying to use one.
If 2) is true then it's generally accepted for the free help giver to make decisions that make their life easier that they might otherwise not for a paid client. Your chef dad doesn't go to the same effort to plate food at home as they do at work. Your mechanic brother might pop a beer and ask you to hold the light while they fix something wrong with your motor. And yeah, the family computer nerd will put the free help receivers on to the same software they use so they're familiar with any problems that might occur. If oursinsync moves over to bitwarden themselves but leaves their family on 1Password and something goes wrong with 1Password in the future, what is the non self-centered move? Are they stuck relearning whatever changes 1Password has made since then? Should they refer their family to customer service?
to satisfy your own philosophical needs that they may not share
They are, presumably, adults who could reject the suggestion to change if they had strong feelings about it.
but that’s not why you switched them over
If you think cloud services are bad, then Bitwarden not using cloud services is what makes it a superior solution, and then would be why you switched them over.
There is nothing about “being a cloud service” that makes 1Password unusable for your family other than your own objections.
But you could say that about every tech decision every tech person makes on behalf of other people. 2015 LastPass was hacked and user details stolen, 2017 OneLogin was hacked and they accessed "user data, apps and various types of keys" and they "cannot rule out the possibility that the threat actor also obtained the ability to decrypt data"; "I don't trust (or don't want to have to trust) cloud services" is a reasonable choice to make.
As the meme goes, the cloud is just somebody else's computer.
> what happens if you’re hit by a bus?
I've already thought about this, and there are dead man's handles already in place to handover control to a person I trust, who is also a user of some of my hosted services (although not password management, because they also choose to host their own).
> It seems really self-centered to retrain non-technical family on new software to satisfy your own philosophical needs that they may not share.
They are welcome to use whatever they want. None of them think password managers (or backups!) are things that are worth paying for, so I pay for and support my chosen solutions. I don't have the time or interest in supporting multiple products for people who don't value any of the solutions in the first place, so I do the best I can to ensure they have something.
I won't pretend that we're the password manager for everyone. If we're not the right one for you then hopefully one of the dozens of others out there fit the bill.
I appreciate you taking the time to respond and let me know your opinion on this though. Thanks!
We still sell licenses.
We still provide local vaults, in fact you can use them via a license (that we still sell) AND you can use them with a subscription.
Want to buy a license?
On the Mac app for instance, open it on a fresh installation. Goto the welcome screen that pops up on first launch, from the list of options choose the "Create a new Local Vault" option in the list. This will take you down the path of buying a license.
Or if you sign up for a subscription, goto advanced options and enable the option to create local vaults. You can sync these to Dropbox or iCloud if you wish, same as you always have been.
There's similar options for Windows. Though it only includes Dropbox syncing and not iCloud.
Hope that helps.
The Windows release and the choices your firm made about how to talk about the change have made it pretty clear where this is headed.
I've said elsewhere but we won't pretend to be the single password manager that works for everyone and I'm sorry if we end up being one that doesn't work for you. Hopefully one of the dozens of others out there work for you if we don't though.
Thanks for the feedback though! I certainly appreciate it and will pass along the information I've gleaned from this thread to the various people that need to see them.
We seen a lot more "I can't access my data anymore" emails before we had our own service. Those seem to have dropped a lot, at least based on my own experience when doing support, since introducing 1Password.com.
At the end of the day, our 1Password.com solution is also more secure thanks to the Secret Key being used as well. Our local vaults are certainly secure, but 1Password.com is even more secure.
No matter what we do we will have people who don't agree with us. The best answer we can have is be able to logically explain why we have chosen to do something the way we have. Whether the user agrees or not is up to them, but we try to be able to at least explain why we chose to go a direction and hope that the explanation makes the most sense for the most people. We don't always get it right, but we certainly try our best.
Those on subscriptions can also still create local vaults as well. You'd have a subscription plus the option of local vaults.
So options haven't disappeared, they're all there.
That said, providing an option without support is kind of bad form. We pride ourselves on providing the best technical support we can for our users. Selling a license and then not supporting it would just not be within what we consider good business or, well, being a good developer.
So whatever we sell, we have to support.
What is the risk scenario you're worried about?
Or if I was to buy into 1Password's worldview, all of my credit cards, bank accounts, ID cards, everything I want to keep a secure digital copy of, is at risk.
Having a sense of control is a huge part of the way we think. Despite the greater risk of death in a car compared to an aeroplane, there's less concerns about car travel because there's a sense of control. Similarly, having the data under my control may be less secure, but that's still within my control rather than dependent on someone else doing the right thing.
Your data is encrypted locally on your devices, it is never available in a decrypted form on any of our servers. A compromise of our servers would result in the attacker getting gibberish (encrypted data).
To decrypt that data the attacker will need both your Master Password and your Secret Key. A Secret Key is a 128-bit key generated locally on your device, your Master Password is a passphrase set by you. These two keys are combined and, to simplify greatly, used to decrypt your data.
The only way an attacker is going to acquire your Master Password and Secret Key are from your devices. Those are the only places those keys really exist.
Guessing both the Secret Key and a strong Master Password are effectively going to cost such a significant amount of money, or due to time and processing constraints, be infeasible.
An attack would have to be highly targeted. In other words, you would have to be a specific target to make any attack be worthwhile. If you believe you are likely to be the target of such a very specific attack you probably have a team of security personnel working for you who could better advise you than I could.
I'd really suggest looking into how we do things. The only feasible attack on your data would be through your devices, and any other password manager that stores data locally on your devices will be impacted the same exact way in this case.
Hope that helps but if you have questions please let me know and I'll do my best to help get you answers.
Edit: apparently markdown isn't a thing here.
Extremely satisfied 1Password customer here. You're correct about lack of Markdown, and for the details: https://news.ycombinator.com/formatdoc
It's also important to remember that your Master Password still plays a role and YOU provide that. If you use a weak Master Password, and we somehow introduced a bug that set the Secret Key to 0's, then your Master Password would be the only thing protecting you. In an ideal world you'd continue to use a strong Master Password.
I've been looking to switch for a while now, as the UI of 1Password looks superior to LastPass and my wife needs a strong UI because else she won't understand her password manager :).
Few questions though;
- Will you add support for the newer 2FA options anytime soon? I'd love to use a recent Yubikey when providing the second factor; the FIDO2 keys and NFC on iPhone.
- Is there any roadmap on when the newer 1Password X becomes the default plugin for use in browsers? As a Linux user I believe my options to use 1Password are somewhat limited.
We've added Yubikey support for the web client and for 1Password for iOS.
We don't comment on future plans because they could change, but we would like to at least see feature parity here in all of the clients, but I can't comment on when that may happen.
2FA doesn't add the same level of security to 1Password as it may with other services so we need to be mindful of bordering into security theater.
> Is there any roadmap on when the newer 1Password X becomes the default plugin for use in browsers? As a Linux user I believe my options to use 1Password are somewhat limited.
I believe that's the direction we're heading but as I mentioned we don't generally comment on specifics. We've done the whole comment publicly and say "yes, it's coming soon" enough times and then had to backtrack and say "sorry, no can do" that we just don't say anything specific anymore for fear of upsetting users.
We always tell people buy for what the product is now, not what it may be in the future. And outlining future plans gets people to buy based on what it may be in the future, and those simply aren't promises we can always keep. So we do the typical under promise, over deliver when it comes to talking about future plans.
Hopefully this doesn't come across as pushing your questions off, that's not at all what I'm intending but clearer answers just aren't something we can comment on at this time.
If you do have any questions moving over though feel free to get in touch via our support page and I'll do my best to get you answers.
I'm curious how syncing works, specifically in regards to the Secret Key. Seemingly, to me, if the process works as described; I'd need to copy that Secret Key to each device I want to sync, otherwise there'd be no way to decrypt the data on the new device.
What am I missing?
To sign in on a new device you need:
1. Your email
2. Master Password
3. Secret Key
4. The URL for the server your data resides on
When signing in on a new device we offer a variety of ways to help you do this.
1. Your Emergency Kit, a PDF document, has a QR code that can be scanned on most clients.
2. There's also ways to show the same QR code, or a setup code, within the apps to scan on screen
3. For Apple products we do have a method that saves the Secret Key to the Keychain and can sync via iCloud to help facilitate adding the account to new devices
4. You can always do it manually as well
Hope that helps get a better idea of what has to be done there.
Obviously they _could_ screw up catastrophically, but if you don't trust them to operate their service with a basic level of competence you probably shouldn't be using them as a password manager to begin with.
It is generated locally as I indicated, and as outlined in our white paper.
Where some users get confused, and perhaps rightfully, is that when you sign in you can generate a PDF called an Emergency Kit, that contains the Secret Key. This PDF is generated entirely in JS within the browser. It is not generated on our servers and then downloaded. Some users do get confused about that.
Our web client is effectively a client running in the browser, it's all local and communicates with our servers the same way that a native app would.
If you don't have the DB, they can't.
So we're ditching 1password for our family, and are likely to do so for work, too.
I've paid for every upgrade for myself and my family so I'm aggregately paying _more_ than I would have paid for the cloud service. But I don't want a cloud service
My advice: if you don’t do this already take some time to get some older folk without a lot of technical experience using 1Pass effectively (real-life usecases too like shared vaults). Take their feedback seriously because solving for them will reduce mental overhead for more technical users too.
We've been doing a lot of user testing recently, so I'll run this by the team that do those tests.
Really appreciate you taking the time to provide feedback here. You didn't have to but did anyway and it's appreciated.
The biggest pain point is creating a new login on iOS in safari. I understand the iOS limitations on browser hooks, but walking a user through creating a new login on iOS over the phone was a test of supernatural patience.
If they create the new login in the app instead of safari then they have to type a URL (or it won’t show up in safari) which for an older person who doesn’t really understand websites have addresses is like asking them to calculate the shortest superpermutation of n=7 “real quick”.
I believe the family plan for 1Password is fantastic. And a bunch of us have/will signup and put our aging parents on it. So a little user testing by older people where you are trying to help them over the phone would go a long way probably.
Unfortunately, the iOS side is difficult. We've done the best we can there given the limitations and our imagination at this time. It's possible we drum up a better solution in the future but we haven't had any major breakthroughs in how best to present the UI for this.
We have filed feature requests with Apple to try to get better mechanisms for making this whole process better though. Hopefully we'll see improvements down the road that help us make a better user experience.
1) It's generally preferable that open-source solutions be as capable & usable as closed-source ones, and
2) having the best option be a subscription service is very, very "ugh", as has been constantly complained about here and elsewhere.
Re: 2. It's not just subscription. Download the app (Mac or Windows) and in the options choose to create a new local vault. You'll be presented with a dialog to buy a license if you don't already have one.
I get the complaints about subscriptions, but there are certainly pieces of software I am willing to pay a subscription for. One that is actively improved, secured, and is used throughout my day is one of them. Your opinion on this may be different of course.
I really appreciate the input though. Thank you!
Thanks for the kind words. I'll make sure to pass this along to our team. It's always great when we hear positives. Sometimes the negatives can overwhelm the positive in terms of feedback.
If I can do anything to help you with the consulting side please reach out via our support team and you're welcome to ask for me. If I can't help you then I'll get you in touch with someone that is able to do so.
I chose not to use a local vault because I fear those scenarios more than the cloud sync via 1Password being compromised.
Hope that helps though!
I waited and waited for local vault support to come back and finally migrated to something else. No other password manager is as good as 1Password but stringing that out for so long cost AgileBits my business, forever.
We had a greater need for the 1Password.com support in the Windows client. So when we started our rewrite efforts it focused on that.
In general, we'd agree that it took longer than we wanted, and I'm sorry if that caused you to leave. In the end we were really doing the best we could given the demands we had and the time/resources available to do it. It sounds like in this case it wasn't enough.
There shouldn't be.
> One that is actively improved, secured, and is used throughout my day is one of them.
Not when those problems are completely self-inflicted by injecting Cloud Bullshit into stuff that doesn't need it.
Subscriptions allow developers to keep improving their software. If you just pay for software once and keep using an older version, developers miss out on money that could keep them working and improving things. OSS is great, but money is important for developers to deliver quality and updates.
It's one thing to use a standalone app like MS Money for 20 years with various hacks and compatibility modes to keep it working. Over the time I've used a password manager I've seen OS and browser updates break parts like plugins or syncing. I've transitioned to using passwords more on my phone (and phone APIs have changed).
When you had a computer sitting in your home that connected to the Internet via modem for 2 hours a day, your OS or apps could be riddled with hidden bugs and holes and it didn't matter as much.
Now we are constantly operating in insecure-by-default environments, and (responsible) companies have to spend much more to monitor, improve and maintain their applications over time, as devices change, underlying operating systems change, new threats are detected and published, etc..
Most such software wasn't subscription based either.
You can map things up pretty good here. However, note that Little Snitch may not provide the most accurate domains when it comes to CDN services. So do keep that in mind that it may reverse DNS incorrectly. I believe they document this on their own site as well. There's at least this that I could find:
We went so far as with the Mac application to provide a plist that documents each domain it contacts to give context within Little Snitch, but I suspect you're using 1Password X, which cannot provide the same feature.
There's also an open issue to be able to disable rich icons as a setting there. I was a little unhappy that we didn't provide an option for that feature in 1Password X, and I'll bring up again with that team that they need to provide the checkbox sooner rather than later.
Sorry you got bit by this though and thank you for the feedback!
The keyboard shortcut to paste a password is better than autofill imo.
Edit: Looks like a million and one other people replied at the exact same time I did, sorry. :3
- Keepass https://www.keepassx.org/ | https://keepassxc.org/
- Pass https://www.passwordstore.org/
- Dashlane https://www.dashlane.com/
- 1Password https://1password.com/
- Bitwardnen https://bitwarden.com/
- Lockwise https://www.mozilla.org/en-US/firefox/lockwise/
If you think there are other legit options out there please reply with links to the project / product.
One example near me is NXP, a semicon business from Eindhoven (NL) where I live. Philips spun them out after loading them with debt,a PE firm bought them. Radical cost cutting, the usual, but they also accomplished a culture change (to some extent). As a former Philips department, the culture was very slow and bureaucratic, more akin to government than a for-profit business. The new owners made it very clear that from then on, money needed to be earned and anything that didn't contribute to that wasn't worth doing. The company became a fair bit more lean and agile as a result, pushing products and updates faster etc.
Customers typically aren't affected but employees are.
This is fundamentally untrue. Large CAP ($1B+ valuations) is notorious for this, but there's about 5k PE deals per year and those deals are the exception, not the norm, in terms of shear volume. They're great for headlines though! (hello Toys 'R Us)
Most of them are about adding value through various means, one of those might be cutting unnecessary costs.
So let's take it as read that you meant PE, in that case, it depends is the usual answer. There are quite a few examples of PE funds buying companies and letting them run as autonomous as possible with positive results and there are examples of PE funds buying a company outright or a controlling interest who then become 'backseat drivers' but without the relevant experience. In those cases - especially if the PE party consists mostly of accountants and financial people - it usually does not take long before the effects become visible. But there are a great many players and the majority of them is both well intentioned and ends up with positive results. The ones you hear and read about in the newspapers are not really representative for the PE market as a whole, that's just the news' habit of focusing on the trainwreck.
PE fund returns nX to their LPs versus PE fund buys controlling stake in struggling company and runs it into the ground after loading it up with debt. Which headline do you think will attract more eyeballs?
First, VC doesn't acquire businesses, PE does.
Second, I've seen NUMEROUS examples of entities acquired by financial sponsors (PE) that work out well.
If you look at Vista Equity, Thoma Bravo, Silverlake, TA Associates, Accel-KKR, etc. you'll find an incredible amount of wealth being generated.
PS - Depends on what you mean by "turned out great"...
Note: am employee.
The problem is that since then their growth has completely stalled out and is projected to be under 5% for both this year and next year.
While their revenue tops out over $1B their net profit is pretty slim.
Post acquisition expect to see a lot of cuts to improve cash flow as operations are slashed across the board, and depending on how the acquisition is funded it won't be a surprise to see the company burdened with a bunch of debt.
Then PE will either try to return cash through net income, or more likely than not relist the company after two - five years when the restructuring is complete and the company has a more financially interesting profile, akin to what happened with Ping Identity.
In an ideal world they will also try to increase revenue growth as well, so I wouldn't be surprised to see some more price increases coming down the line as well.
"On January 31, 2017, we completed our Merger with a wholly-owned subsidiary of Citrix, pursuant to which we combined with Citrix’s GoTo family of service offerings known as the GoTo Business. Following the completion of the Merger, our revenue grew to over $1 billion on an annualized basis in fiscal 2017 and we added over 1,600 employees." - https://q10k.com/LOGM
If this was a private company/startup, of course you'd be laughing all the way to the bank. Not so if you were a public investor in LogMeIn. Far from it.
So the consensus is what it is given normal volume, likely a relatively small chunk of shares changing hands repeatedly rather than a really large block being sold once. The latter would almost certainly depress the price.
Looks like it was only $96/share because there was rumors of this sale.
LMI bought Hamachi in 2006 and I was involved in the development until 2009. Through that time there were no known issues with older games. Nothing was broken. What was tunneled before was still tunneled the exact same way, including IPX, IP4 broadcasts and multicasts. We did rewrite the client, cleaning up all the cruft, separating the engine from the UI, adding compression support and what not. It still wasn't fully integrated with the LMI core and no LMI account was required. The UI was redesigned in-house, without my participation, and while I didn't like the result, the original look wasn't a pinnacle of design either :)
What happened after 2009 I have no idea. The devs I worked with were really good, so if things broke, most likely it wasn't accidental.
It's likely the issues were quickly fixed and I am remembering the gradual post-2009 decline more vividly and blaming it on the time when the UI changed, which was emotionally upsetting ;)
But thanks for posting your remembrance of the events, and creating Hamachi in the first place!
If you want to find out what it feels like to be inside of an orange that’s being squeezed for $4.3 billion plus value, stick around.
The deal itself would take place next year anyway. Any restructuring would be late 2020/early 2021 the earliest.
The deal provides an $86 exit for every single shareholder (including employees & managers who own shares).
Not saying no to such an offer makes sense, but it also implies that nobody is really convinced that these stocks will ever be worth, say, $100. All-time top was $120 in early 2018, since then the price plummeted and has been moving sideways.
If looking from this perspective - how does this PE firm plan to make money, especially that the deal implies that most shareholders don't expect this stock to rise by any means, which is a bad sign for any kind of publicly traded company?
These PEs would buy the company for ~$4bn. Last year's EBITDA is was just short of $400M - probably they don't want to wait 10+ years for their investment to pay back.
Maybe they will try to 'restructure' (i.e. cut expenses where possible, split the company into multiple companies along business units, deprecate some products), get as much profits as possible in the upcoming years and then try to sell the whole thing again to e.g. a tech company.
Of course this is just speculation, but keeping things 'as is' simply wouldn't generate enough returns to justify the all-cash investment.
Then within 18 months, they'll reduce benefits (e.g. worse insurance plan, change the vacation policy), or maybe actually lay off people and shut down entire departments to boost numbers.
tl;dr - update your a resume and start interviewing to have a backup. If upper management thinks you're a top performer, you have a bit more leeway.
Speculative R&D work is not highly valued, that's what VC does.
SG&A tends to get hit the hardest (HR/Finance/Legal etc.). Non core business functions get outsourced.
Look at the existing portfolio and see where you for in.
Honestly, I would have supported Bitwarden before had I known about it prior to this HN post. I appreciate the content you and everyone else has provided in this thread.
In DoD side, they tend to use DameWare. It was stagnant for a while but has gotten better and even has a linux client now. Think "ugly but powerful".
I've seen fly by night engineers hurdled by IT deps using TeamViewer way more than I would ever want to admit. It "just works" but doesnt have many of the management features.
I had an awesome experience with on-prem ScreenConnect, but then they changed their licensing and names and all kinds of other things. Nice featureset, writing plugins was easy. I still might consider it if I could get a decent deal.
Bomgar was pretty polished and has some interesting mobile/mdm stuff in the works last I tried it, but that was a long time ago.
GoToMyPC and LogMeIn both tend to be favorites of MSPs for some reason, I never really liked them mostly because of the management interfaces and constant license changes.
Citrix really seems more focused on real enterprise. Features are nice but the price reflects it, good support.
RDS/Terminal Services in the windows world is a staple, just have to watch for licensing violations which happen a lot. Lacks a lot of the management features other things have, but is built in.
Then you get into open source, which really comes down to some variant of VNC (choose your poison) which is really all just remote desktop with no management features. There is also noVNC and Spice which are pretty cool and used in more and more foss software (like proxmox for example).
There is Apache Guacamole which is like a gateway to access RDS/VNC et al instances, which is pretty cool.
So yeah, it really all depends on your use case and budget.
Anyway, no one is forcing you to use it, but it seems a reasonable free choice for now (teamviewer and splashtop, for example, don't allow free commercial use...and commercial means connecting to your own work laptop, not just using it directly for money making activities like paid support.)
Are these ads delivered over the internet, or served locally?
You can read a detailed breakdown here
It's more of a pain than TeamViewer though.
Use open source software wherever possible, it's just better that way.
On Linux keepassxc is great, with strong browser integration and even has a good extension for integration with ssh-agent.
I don't use iOS myself, but a quick search shows Strongbox as a decent client. On Android I use Keepass DX which is very good by the sync support isn't there. Keepass2Android is better on that front, but has a much worse UI and no support for the new biometric auth process, only the old fingerprint-specific one.
I use MacOS, Windows, Linux and iOS and it works perfectly between them.
On Window, Linux and MacOS I use KeepassXC with their browser extension on Firefox. On iOS I use Strongbox. I sync my password file using Nextcloud (self-hosted).
Syncing is pretty easy if you're using Nextcloud or Dropbox :) Tried Syncthing but I didn't like the idea of having to have a PC on all the time to make sure it synced.
I just searched and there are also iOS applications that also provide easy cloud sync, one of such is KeePassium.
It doesn't have any sync built in. It's just a way to save, open, and edit encrypted password files. You have to figure out a way to sync it yourself. There might be other tools that help you with that though.
Although I'm unsure which OSes are officially supported by the application.
only windows/linux (mono). There are alternative clients though. see: https://keepass.info/download.html, under the "Contributed/Unofficial KeePass Ports" section.
The downside is that my phone doesn’t easily sync back to my PC, but it’s vanishingly rare that I create a new account (and so kdbx update) on my phone these days.
> LogMeIn, Inc. is a provider of software as a service and cloud-based remote connectivity services for collaboration, IT management and customer engagement
Totally separate products?
Although historically private equity has been a net gain for struggling businesses that would otherwise go out of business.
There was tons of anti PE stuff after the financial crisis and they received some of the earlier and harshest attacks from congress and other groups, but the data didn't support the idea they were some corporate raiding vultures and far more often turned around ventures in precarious positions.
But ultimately its not something you go to when they are going well. Unless there is some obvious value add consolidation scheme.
The kiss of death works in mysterious ways, the synergy is palpable.
Sure, they have a free plan and so you are not the customer. Why do they get a pass?
Contrast to some other password managers that stay flat out, they don't collect your data and don't want to know it.
> 1. Information We Collect and Receive
> Service Data (including Session and Usage data):
> When you use our Services, we receive information generated through the use of the Service, either entered by you or others who use the Services with you (for example, schedules, attendee info, etc.), or from the Service infrastructure itself, (for example, duration of session, use of webcams, connection information, etc.) We may also collect usage and log data about how the services are accessed and used, including information about the device you are using the Services on, IP addresses, location information, language settings, what operating system you are using, unique device identifiers and other diagnostic data ...
> Third Party Data: We may receive information about you from other sources, including publicly available databases or third parties from whom we have purchased data, and combine this data with information we already have about you. We may also receive information from other affiliated companies that are a part of our corporate group. This helps us to update, expand and analyze our records, identify new prospects for marketing, and provide products and services that may be of interest to you.
> Location Information: We collect your location-based information for the purpose of providing and supporting the service and for fraud prevention and security monitoring. If you wish to opt-out of the collection and use of your collection information, you may do so by turning it off on your device settings.
> Device Information: When you use our Services, we automatically collect information on the type of device you use, operating system version, and the device identifier (or "UDID").
That's pretty much everything given they put an extension in your browser and can collect all of that info for every page you visit
> 4. Information Sharing
> ... We may share your personal information with (a) third party service providers; (b) business partners; (c) affiliated companies within our corporate structure
Why would anyone want a cloud based, proprietary, non-free, non-oss password manager is what I really want to know.
Former reputation and inertia. I use it, and when I started it seemed to have the best reputation for ease of use. I also recall that its security model was publicly endorsed by quite a few people who looked at it closely. I only use it for "less important" sites, which basically means everything that isn't a primary email account or an investment website. For those, I use 2FA whenever possible and memorize random passwords .
I've been interested in switching since LastPass was bought by LogMeIn, but it's never been a high enough priority for me to actually spend the time to search for another tool.
 when memorization gets to be too much, I split the passwords in half: a common half I memorize, and a unique half I write down on paper.
Right now, it's still impossible to switch to it for a lot of people.
We also document for law enforcement what we may be able to provide:
I think we keep this all pretty readable by the average user as well instead of using crazy terminology that doesn't make sense.
But if anyone has questions around our privacy I'm happy to answer any questions as well.