I agree with you. I’ve been using keychain since it started and went through a few years ago and updated all of my passwords with it, works great. I also highly recommend using Apples hide my email feature as well.
I completely agree I have been using Enpass for years now, and it's amazing. I started using it early on and am a legacy user. It works across my apple and windows devices. Nowadays, if you are not using a password manager, you are putting yourself at risk.
We have iMacs, iPad, MacBook, and of course, Android phones. So I use Keeper. It works so well and has great security features. I used to maintain our passwords in Numbers and kept a physical notebook but that was a headache and terribly not secure. We have over 100 accounts to track.
I watched your video about a year ago when you spoke about password managers. I looked into using LastPass and signed up for it. Because I was a little scared to change all of my passwords at one time, I decided to just do a few each day to see how it worked. It was so easy and by the end of the week, I had changed all my passwords (almost 100) and I've never looked back!
I'm using a password manager for over a year now and I'm never going back, the connivence and piece of mind alone are reason enough. I use Dashlane and it's been very reliable so far.
Great video, Gary! I've been using 1Password for years, and I've been hearing, through them, about the coming Passkey protocol. Maybe that could be a topic for a future video.
Apples own password manager has got much better recently and it’s now my default rather than Dashlane which I’ve been using for years. Nothing wrong with Dashlane just the Apple version is more seamless for me. Great video as always Gary.
Gary, you explain the problem very well. The problem is the Apple PW program has many other problems. I just got my new iPhone 15 Max and lost all my passwords in the transfer. Until the entire computer industry offers Facial ID or Finger Print ID or Iris retnal ID or Voice ID we will NEVER solve the password dilemma.
Totally agree with all the things you mention and started using a 3rd party password manager (1Password) a while back and am very happy with it. One teething problem that causes confusion is that I often find Apple's password manager and 1Password competing whenever I try to log on somewhere. Keen to hear how you deal with that. Thanks again for great content!
I use them both, so I let them both take in new passwords (I let Apple's system create the passwords). So then it doesn't matter when they compete. I usually just choose the Apple option since it is easier to click on.
I’ve used a plethora of password managers over the years; LastPass, 1Password, Dashlane, Enpass etc. and the one crux is having to pay for it on a monthly or yearly basis. I just use iCloud Keychain which has vastly improved during the years in terms of security sensitivity and more importantly, it’s free with iCloud.
Yes! I've been using LastPass for years because I need a cross platform solution. Much better than the sticky note under the keyboard so many people use,
I have a mix of technologies on my home network Mac, Windows, Linux, Android. I've been using KeypassXC for many years now. Cross platform for desktop, browser extension (Chrome and variants), open source, mobile app (Android - I have never had an iPhone), regularly updated and free. Sync is handled by Syncthing.
Hi Gary. Second time I‘ve watched this and it has occured to me that what‘s missing is a simple demo - show your viewers HOW it works. One of the reasons I came late to password mgrs was I wasn‘t sure how they worked exactly. (Yeah I could have read a bit more about it but nevertheless, a demo from the likes of yourself would‘ve helped greatly.)
Fully concur, would like to add another reason. Sometimes you want/need to share password with others (spouse, kids), with a password manager like 1Password you can create dedicated vaults for specific sharing situations. Unfortunately this is not possible with Apple’s own pwmanager, that’s for personal usage only.
@@macmost so say, I wanted to share an Amazon account Password, because we share on Prime shipping, if son or daughter wanted the new password, I would have to,maybe copy and paste it to them in a text? Only way to share if they are not in the same room or house?
@@brentnutter1510 Right. No good solution to that using Apple's password manager if they are not with you. This would be an example of a feature that a third-party password manager would maybe have. Of course it won't be easy there either as you'd probably have to set up lots of things in advance and both of you would need to be using that third-party manager.
Third-party ones usually have more features and are cross-platform. But for just passwords to websites, Apple's system is certainly as good. As for using it properly: just use it. Use it to generate new passwords, use it to enter passwords. Nothing too complex about it.
@@macmost well said. great job with your video today. nothing wrong with a refresher course on password and how to manage them. Apple password manager is very easy to use especially for someone who is well into the Apple ecosystem
Could you describe exactly how to use Keychain and a 3rd party pw mgr on your device? In a previous post you said it was two clicks instead of one but I ‘m a real beginner and would appreciate steps. I find all your videos really helpful.
When you create a new password, you should get prompt from both to save it. Then when you go to enter a password you should see buttons/choices to fill in from both (you would choose just one).
As someone with ABI (that’s why I can’t remember shortcuts when I need them) the password manager is a lifesaver. My only problem is that 1Password doesn’t keep my phone and iPad updated with what’s on the Mac so sometimes I’m denied access or my bank will ask for a changed password. Also one site rejected the 1Password suggestion because it was “too hard to remember” lol. Isn’t that the point?
1Password should sync across your devices. Look at your settings and see where you could have something set up wrong, because it definitely does that. As far as the password, there are controls for length and what is included.
I've been using Passwordwallet like forever. Inexpensive, one time purchase, syncs thru DropBox on devices with pw apps on phone, iPad. All without "subscription" payments.
I've been using a password manager for years, and not all times it fills in the password automatically. for the Apple Mac, I am having a hard time, because the built-in password manager keeps requesting the password for emails or websites which should be already registered and stored, but for some unknown reason, it deletes some of the passwords. I do not know the reason till today!
How do you go and update all your weak passwords to strong passwords using the apple password manager. And will this then sync across all my apple devices?
It syncs with iCloud, yes. There's no magic way to update passwords since each site and service does it differently. You just have to do it one-by-one, prioritizing important sites (example: email first, then financial, then work, then social, etc.).
I’ve been using Apple’s password manager for some time and it generally works great, but I’ve had one problem. I went through and cleaned up my old passwords, getting rid of sites I no longer use, but the old passwords then came back. Any idea what would cause this?
@@macmost Thank you. For some reason I'm no longer getting notices when people respond to my comments and questions. I only just discovered now that you replied two weeks ago. Have you a video that teaches us specifically how to use Apple's password manager? I'm looking, but I'm not sure if any of the ones I'm seeing do that. Thank you again.
If on is using the Apple Password Manager and someone gains access to your Apple Password, does that compromise all of your stored passwords in the Apple password manager?
im not the sharpest knife in the drawer - my defence is old age - but I've been trying to reset passwords, as per this video, and it is impossible. WTF! every time I go through the rigamarole of changing my banking password I end up back where I started: needing to change my password. any suggestions?
I remember reading an article (6-7 years ago) about the companies behind password management apps. Google and Apple were just about the only American owned companies, most were Chinese corporations and the bulk of them (save just a few) had ownership ties to Chinese corporations (I.e. based in Norway but majority owned by Chinese owners.) They played down the impact of the companies owned by Chinese corporations, but the percentage alone scared me. So if you’re looking for a third party password manager, look into the company first! Just because it’s on the google, apple or Microsoft app stores doesn’t mean it’s safe.
@@pseudoki - Only in the sense that China has proven itself to not be friendly or honest in its business dealings. They are literally THE hacking capital of the world, so why would I want to trust China with my passwords?
American owned companies can be as much dangerous and not reliable, as chinese owned. In my opinion, most trustworthy companies are from Europe, because it has strict laws and tradition to make quality products and from Russia, because it has the best mathematician school and talented programmers. European and russian companies doesn't hold monopolies like american or chinese and they tend to offer their customers better, safer products to be competitive. At the end, usually it doesn't matter where the company is located as far as it is a good company. It is always better to judge individually.
There is no "app." It is built into the system (System Settings/Preferences, Passwords) and into Safari. It can be accessed in other apps when a password is requested.
I’ve had that problem too but there is an ‘Other Options’ underneath the ‘Use Strong Password’ which allows you to customise the strong password to align with the website’s requirements. That revised password is then stored in the keychain as normal
Gary, I recently attempted to change the password on my google account and email. I was not aware, I actually created a Mac/google keychain passkey. It seems to work well, and eliminated the need for a separate password. The passkey was automatically saved to Mac passwords. It would not allow me to save it to 1password. I must say, I do not understand keychains/passkeys and how they work. Have you done or will you be doing a video on keychains? Thanks, Adam
Do you mean a video on passkeys? I would like to, but the fact that almost every web site handles them differently makes it hard. Like if I showed how to set it up with site A, then it would be different in site B and very confusing. Still hoping things improve before I do a video.
What if I use the apple password manager most of the time, but then I want to log into a site from a chrome browser instead of safari? will I still have access to my passwords?
Not sure what that browser offers. They could support it, but I don't know if they do. Otherwise, you can always go to System Settings, Passwords to get your passwords. Not convenient, but possible.
Apple has an extension called “iCloud passwords” for Google Chrome. With this extension you will be able to use your passwords from Apples password manager directly in Google chrome.
I have found that a problem with using a password manager and complicated passwords is that some sites will not allow the password manager to fill in the password, nor will it allow us to copy and paste the password, nor will it allow us to switch tabs back-n-forth as we try to fill in the password. It only allows us to fill in the password manually and in one go.
I HATE 1Password since they went to a monthly subscription scheme. I’ve bought them multiple times over different versions but I no longer trust them with my data. I want a secure note/password manager that will sync over iCloud with my macs and iOS devices. I don’t mind paying, but I’m not effing renting one!
One-time payments for software was an unsustainable business model. Developers need to get paid for their work just like with any other job. I'm sure you wouldn't want your boss to pay you once and expect you to keep working for years after. If we expect to have good software moving forward, we need to support developers that switch to this model. It will mean they can develop and maintain software with the features really needed, not what the marketing people say will "sell new units and upgrades."
@@macmost Absolutely pure BS. Curiously, your response is almost verbatim what 1Password says ?? Create a new version, an upgrade, and charge for that, the same as always; I’ve bought several versions of 1Password. If I want new features I’ll upgrade, same as everything else, my Mac, my iPhone, my car, etc. I WILL NOT RENT SOFTWARE AS CRITICAL AS PASSWORD MANAGEMENT. You, and other apologists are ignoring the fact that I already paid full price for 1Password 7, and then the company is trying to force me to rent it. I do not trust developers who would be so sleazy to safeguard my critical data.
@@AV84USA I have no idea what 1Password has published about this. But not surprised they agree. Most major software developers have switched to this model at this point (Microsoft, Adobe, to name two big ones). For there to be good software in the future, developers need to have a sustainable revenue model whether you personally like it or not.
@@macmost how in the hell do you know if their software is good? You just punted and said these are the top password managers, some free some not. Anyone can go on the App Store and see what the top downloads are. And I disagree, a good revenue model is one that doesn’t piss off and alienate long time paying customers. (The same as you not wanting to offend any potential sponsors is a good revenue model for you) I wrote how I feel about their policy, and you attempting to educate me aren’t going to change my mind at all. I’ve been using 1Password a lot longer than I’ve been watching you, so your thoughts on their new business model are noted, but aren’t going to sway my opinion. I use a password manager to store my passwords and two or three secure notes, and have it sync across my Apple devices. That’s it! I don’t use the other bells and whistles, plug-ins, or other shovelware they insert to justify putting out updates every week. I believe I stated this in my original post. Renting this type of core utility is not something I’m going to do. However I do subscribe to Adobe products, but only because I extensively use and have paid to upgraded since Photoshop 2.5.
@@AV84USA "how in the hell do you know if their software is good?" A: Years of direct experience with some of them + recommendations from experts that I personally know and trust + a lifetime of keeping up with news and thoughtful commentary on this sector + a Computer Science education and years of experience. If you don't feel that this qualifies me to make some suggestions of apps to try, then fine I guess, won't argue with you.
I use both 1Password7 and Apple. I worry about the security on Apple. Not because they are not secure, but because my passcode for face id on my phone is just 6 digits. My 1password passsword is a complete sentence and very secure. I am not willing to require such a secure password for my Mac or iPhone. This, I think, is the achilles heel of Apple’s system.
Make your passcode longer then. In general, passcodes are shorter because they can't be used without physical access to the device. A malicious individual in another part of the world can't just force their way in with a million tries. They have to have your device, and they can only try one passcode and then have to wait (and you can limit it more). But if you want to make your passcode, say, 9 digits or a full keyboard password, then you have Face ID to help you limit the number of times you have to input that.
Great video! 👏👏👏 I use 1Password but use their option for "memorable" passwords instead of a completely random collection of numbers, letters, and symbols. My understanding was these memorable passwords are more than secure for one's needs and when you can't automatically enter your password, or copy-paste, a memorable password does make typing in the password easier. Am I incorrect in my understanding? For those who don't know what I mean, here is an example of a memorable password 1Password just created for this post... "sepsis-GENEVA-tabby-decimate." Sometimes I will add a number and or symbol to these memorable passwords if the site requires it.
I would have no problem if it would sink everywhere but it doesn't, especially on my iPhone, sometimes the app I want to use needs to have something I can remember, something easy. but everything else could sometimes sink with my other apple products.
If someone were to break into your house or steal your iPhone and then hack into your devices, wouldn’t they then be able to use all of your passwords since the password manager would automatically fill in your passwords?
Yes, you should use a strong password for that. But keep in mind that a second factor is always needed. Either a two-factor code when logging into the service, or physical access to your unlocked device. It isn't as vulnerable as just an ID+password to a website or something like that.
I started with RoboForm years ago (pre-Apple) and then moved on to others. I like the features on 1Password so now use that. I’ve flirted with Keychain and think it’s well-worth using if you don’t know where to start.
I'm not sure if it's a good idea to recommend LastPass, considering all of the trouble they've been into lately after their hack. Do you care to comment?
Well this video predates their late December announcement. You are right, I do not recommend LastPass now. Plenty of others to choose from, or just use iCloud.
Just wondering about when using say another browser. I use Firefox at times instead of Safari. What are my options in this case? ie. Can a site created p/w while using Firefox save to my Apple password manager? Is it a dumb question? I think sometimes a new p/w will 'migrate' to my Apple p/w manager? *And thank you for your helpful uploads Garry. They've helped me SO much over the years. 😉🙏🏻🇦🇺🦘
Firefox always has had it's own built-in password manager that is very efficient, and one of the reasons it's always been my default browser. Twenty years of using it and I've never been hacked by anyone anywhere. They also have the option for using a master password (which of course I always use) so if someone goes to a site where you've stored a password for, they have to enter your Firefox master password, or no access to your credentials. That person does have the option to enter their own login info and then choose whether to save that info also, or just not use the site at all on your computer. Your passwords are stored on your device, not in some cloud somewhere, which I find the most secure option of all. Granted I'm assuming that someone is using an account password when logging into their computer, and that they're using a different Firefox master password than their Apple account password. There is also the option to share between devices by creating a Firefox account, which will let you share your logins, bookmarks and tabs between more than one device. It's also very secure on a Windows run computer. Firefox also has the best built-in security and the easiest to use in order to configure and dump website data (cookies, cache, etc) from. Personally I can't stand Safari, it's built-in security and options to choose what you share is very basic and not very user friendly at all! I am always surprised about it being an Apple built app because of that. On any computer I setup for someone, I make sure that Firefox is the default browser, and no one has regretted it yet. Personally, I never actually type my passwords in anywhere, as they're stored in an encrypted, secure app (with yet another different password required, lol) on my computer -- you have four times to enter it's password, then the encrypted file is locked. When required to supply credentials, I just open that app, then copy and paste the required info in where needed. That allows me to create long complicated passwords that I never bother try to memorize cos I never bother to try to type them in anywhere, lol. In general though, I'm very careful where I go, and check website addresses when need be. I also created a couple of "throwaway" email addresses that I use only for membership type websites such as discussion boards -- or any website that I'm not completely sure of, but need to create an account with. That way if a site is less than honourable, then my main email address doesn't get hit with crap. This all might seem a lot of work, but once setup, it pretty much runs on it's own, and like I said, I've never been hacked or compromised in twenty years. There's always a compromise for things being easy, so I don't take that route, nor ever recommend it to anyone.