LastPass - Now FREE across all devices, protect your passwords!
762°Expired

LastPass - Now FREE across all devices, protect your passwords!

Editor 77
Editor
Found 2nd Nov 2016Made hot 2nd Nov 2016
LastPass, the password manager owned by LogMeIn, is making a core component of its service free.

[img]i.imgur.com/Tsz…png?1[/img]

LastPass helps improve password security by allowing users to generate random passwords and storing them securely, so users don’t have to worry about password reuse leading to one of their accounts being breached.

The company’s payment model has always been sort of frustrating — users could access the the browser extension for free but had to pay an annual fee to take their passwords with them on mobile.

77 Comments

Hot - submitted earlier but went missing!

Nice spot thanks, already use last pass on my comps so mobile for free is great.

that's a welcome news
Edited by: "Palwan" 2nd Nov 2016

I personally use keepass, been free from day one and i've never had any issues

Your text here

Protect your passwords, put them on someone else's servers. X)

Better off using Enpass..

kas786

I personally use keepass, been free from day one and i've never had any … I personally use keepass, been free from day one and i've never had any issuesYour text here



Keepass is awesome, but Enpass is far better, with a really nice interface, Windows, MAC, IOS, Android support with apps, desktop software, browser plugins.

The Windows desktop version is free, the apps are free up to 20 passwords..

Plus you can store your encrypted database on your own servers or clouds of your choice from Dropbox, Google Drive, One Drive, Box, Folder, Webdav, Owncloud.

Original Poster Editor

ukez

Protect your passwords, put them on someone else's servers. X)Better off … Protect your passwords, put them on someone else's servers. X)Better off using Enpass..



Storage location is irrelevant when they are using a one-way salted hash. Hash is always sent to verify, never your master password, not to mention its encrypted by 256bit AES before being stored. (_;)
Edited by: "msmyth" 2nd Nov 2016

msmyth

Storage location is irrelevant when they are using a one-way salted hash. … Storage location is irrelevant when they are using a one-way salted hash. Hash is always sent to verify, never your master password, not to mention its encrypted by 256bit AES before being stored. (_;)


They all use 256bit AES protected databases and a master passwords.

Yeah lastpass is so secure that its been hacked, what twice now?

Id prefer to store my 256bit AES encrypted password on my own 256bit AES-NI HDDs for free.

In 365 days you will have a choice, subscribe to a premium package, hope for another free code or mess about and try to leave and export your database to another type of application or format that another app can support. Good luck with that!

Original Poster Editor

ukez

In 365 days you will have a choice, subscribe to a premium package, hope … In 365 days you will have a choice, subscribe to a premium package, hope for another free code or mess about and try to leave and export your database to another type of application or format that another app can support. Good luck with that!



Not seeing anywhere that this mentions a 1 year free subscription? The services is free across all devices for the life of the product, hence the post, and to be honest using any password manager will introduce exporting issues regardless.



msmyth

Not seeing anywhere that this mentions a 1 year free subscription? The … Not seeing anywhere that this mentions a 1 year free subscription? The services is free across all devices for the life of the product, hence the post, and to be honest using any password manager will introduce exporting issues regardless.



Are they free now then? Fair enough, but like I said they've already been compromised a couple of times in the past from what I've read.

Is enpass opensource?

Standard procedure I payed for the phone app subscription last month...

Is it limited to a numbe of passwords? Asking because the app says it's £8.99 a year for premium.

Original Poster Editor

Predikuesi

Is it limited to a numbe of passwords? Asking because the app says it's … Is it limited to a numbe of passwords? Asking because the app says it's £8.99 a year for premium.



Nope I don't think so.

Premium includes
Everything in Free, plus:

Family Sharing - up to 5 users
Ad free
YubiKey & Sesame 2FA options
Priority tech support
LastPass for applications
Desktop fingerprint identification
1GB of encrypted file storage

Interesting. When I use this I get my 60 day trial has ended.

Nice for free :)Shame that they keep increasing the prices on their other products though.. been a loyal logmein user for 10 years but just too expensive now

I'm not going to be sucked in. This company has form for taking free services people had relied on for a while and charging with next to no notice. Anyone else remember Hamachi before LogMeIn?

Plus, regardless of that I'm yet to be convinced that linking all your security to a single point of failure is a good idea.

omgpleasespamme

I'm not going to be sucked in. This company has form for taking free … I'm not going to be sucked in. This company has form for taking free services people had relied on for a while and charging with next to no notice. Anyone else remember Hamachi before LogMeIn? Plus, regardless of that I'm yet to be convinced that linking all your security to a single point of failure is a good idea.



Hamachi is still free for up to 5 connections. I started off with logmein free and then logmein central when it was £250. My central renewal is £1999 plus vat so I've just moved to TeamViewer

I'm using Roboform and although is on the whole useable, I'm surprised and worried that they never have made had any security breaches at all. All companies will get attacked, the larger the sooner, it is how they deal with it which gives them credibility. Look at Yahoo who tried to keep secret for years that hackers stole millions of email information from them. I'll no longer trust them nor use their services again. On the other hand, Lastpass have been open to their security breaches however minor, even when none of their users password database has actuallly been taken, and their swift counter-measures to hardened their systems against future attacks.

Haven't been a fan a yearly subscriptions so if this premium plan is now free I going to migrate my password data, goodbye Roboform.

So this is the way forward then?

This is great news. I love lastpass and have been using it now for around 6 months. but wasn't keen on paying extra for mobile. Off to set it up now! :-)

mb1

One of the common complaints is that LogMeIn was deceptive in the … One of the common complaints is that LogMeIn was deceptive in the promotion of their free service.I am a big fan of SafeInCloud



No available for Windows phone whereas lastpass is!

msmyth

Nope I don't think so.Premium includes Everything in Free, plus:Family … Nope I don't think so.Premium includes Everything in Free, plus:Family Sharing - up to 5 usersAd freeYubiKey & Sesame 2FA optionsPriority tech supportLastPass for applicationsDesktop fingerprint identification1GB of encrypted file storage



Does seem to suggest it is £8.99 per annum though
http://a64.tinypic.com/1zdsyfk.jpg

msmyth

Storage location is irrelevant when they are using a one-way salted hash. … Storage location is irrelevant when they are using a one-way salted hash. Hash is always sent to verify, never your master password, not to mention its encrypted by 256bit AES before being stored. (_;)



er, no. the passwords have to be stored using reversible encryption - otherwise how can lastpass tell you your saved passwords.

it's the password controlling the encryption key that's stored after passing through a one-way-salted hash function so that it can be verified.

Original Poster Editor

Predikuesi

Does seem to suggest it is £8.99 per annum though



Yes the premium add on is available, however the mobile version can now be used free, premium isn't required as it once was outside of desktop. It's all detailed in the main link.

Edited by: "msmyth" 2nd Nov 2016

Original Poster Editor

speculatrix

er, no. the passwords have to be stored using reversible encryption - … er, no. the passwords have to be stored using reversible encryption - otherwise how can lastpass tell you your saved passwords.it's the password controlling the encryption key that's stored after passing through a one-way-salted hash function so that it can be verified.



No, when you login to LastPass, two things are generated from your Master Password using our code discussed previously before anything is sent to the server: the password hash and the decryption key. This is all done locally.

The password hash is sent to our servers to verify you. Once verified, we send back your encrypted Vault. We are only sent your hash, not your Master Password.
The decryption key, which NEVER leaves your computer, is then used to decrypt your Vault once it comes back.

^^^ covered in the FAQ I posted. Decryption key is stored by you, not LastPass.
Edited by: "msmyth" 2nd Nov 2016

mb1

One of the common complaints is that LogMeIn was deceptive in the … One of the common complaints is that LogMeIn was deceptive in the promotion of their free service.I am a big fan of SafeInCloud



SafeInCloud sounds very much like an oxymoron to me.
Edited by: "omgpleasespamme" 2nd Nov 2016

I've just checked my subscription and it's valid until December 2018. I'll cancel to the free version then.

ukez

Are they free now then? Fair enough, but like I said they've already been … Are they free now then? Fair enough, but like I said they've already been compromised a couple of times in the past from what I've read.



​the way they've been compromised in the past is by phishing, people have created fake pop-ups on sites that look like last pass and get the user to enter their email and master pass

That was lucky! My free 6 months expires very soon and was about to pay

Great, I finally paid for this last week. I'm tired of being unlucky with this

Whilst free is free, do yourself a favour and put some hard earned cash into 1Password. Simple, easy to sync and after using KeePass for years previously I love it. Well worth the money especially if you can get it in a bundle which frequently show up.

safeincloud pro

Using 1Password for years works great on all devices, they don't smother you in advertising like LastPASS, unfortunately even 1password now has a subscription. Complicated media editing apps having a subscription I can understand , a simple password manager asking for a sub is a rip off, unfortunately it's common now with software companies as they try this new money for nothing model, no way I'd ever pay for a sub from these companies..if it's free then brilliant but don't be tricked into getting a sub, you can purchase 1password as a single lifetime purchase.

I agree with what others are saying, because LastPass is now owned by LogMeIn i wouldnt go anywhere near it.
You will spend years filling up your account with sensitive data, then one day you will get an email saying you have 1 week to move to a premium account or you will lose everything.
Thats what they pretty much did with loyal LogMeIn users, some people didnt even get the 7 day warning.
There a plenty of alternatives out there... avoid!!!

Remember when they said LogMeIn will always be free?
https://www.troyhunt.com/content/images/2016/02/59405939Beoxkb5CYAA7sZO2.png
Edited by: "lawsangel" 3rd Nov 2016

freebiehunter

Hamachi is still free for up to 5 connections. I started off with logmein … Hamachi is still free for up to 5 connections. I started off with logmein free and then logmein central when it was £250. My central renewal is £1999 plus vat so I've just moved to TeamViewer



The difference was that Hamachi's free tier can't connect to logged-off workstations, which it could before the change.

Edited by: "Gareth79" 3rd Nov 2016

Looks good, thanks op.

Thanks OP. LastPass is great. And it has been hacked twice. Fortunately it will take a supercomputer a million years to un-encrypt the encrypted data that was stolen. And the hackers don't have a supercomputer. Or a million years.

ukez

Protect your passwords, put them on someone else's servers. X)Better off … Protect your passwords, put them on someone else's servers. X)Better off using Enpass..



As opposed to Dropbox, OneDrive, Google Drive?

If you want your login credentials synced across multiple devices you are going to need a storage location accessible to your devices. LastPass servers are as good a place as any. Who cares if they've been hacked? Of course they have. They are a huge target for the hacker community.

Did any usable data get compromised? Nope.
Post a comment
Avatar
@
    Text