Filed under: Software, Cool tools, Security, Universal Binary
1Passwd 2.0 available, free update for current users
My favorite password and form manager, 1Passwd from Agile Web Solutions, has been given a nice update from version 1.5 to version 2.0. As a registered user I appreciate that there's no charge for this update, even though it's a major update and not a minor tweak. The authors have even stated there won't be a charge for the Leopard-compatible update when the time comes, thanks in part to the support they've received from sites like MacUpdate, VersionTracker and iUseThis. The free major upgrades are their way of saying "Thanks" to the community that has helped them build and improve their app. 1Passwd is a password manager and form-filler for Mac OS X that allows multiple identities, generates strong passwords, integrates with the OS X Keychain and most browsers (Safari, Firefox, Camino, Shiira, Flock and now OmniWeb and DevonAgent), and also integrates with .Mac so you can sync your passwords and forms across multiple systems. It's like the OS X keychain on steroids and with an emphasis on web forms and better integration. I've been using it for a few months now and I've come to rely on it heavily.
Version 2's most notable feature addition is the new Secure Notes feature - which I don't have too much use for personally, but it's nice to know it's there! Additional features include:
- Added 1Passwd extension for DEVONagent 2.0.3.
- Added 1Passwd extension for OmniWeb 5.5.
- Added Import of RoboForm Safenotes.
- Updated About window to include code attribution and hide registration info by default.
- Fixed UTF8 encoding problems in Firefox extension.
- Fixed problem emptying the Trash with Identity records.
There's a free version which is fully functional but limits the number of saved forms and identities to saved forms and identities to 12 and 1, respectively. The registered version costs $29.99 or $39.99 for a family license (up to 3 users in the same household) and there's a 30-day, 100% refund guarantee. Go ahead and give it a try - you really have nothing to lose!
Get a WordPress.com Blog
![TUAW [Cafepress]](http://www.blogsmithmedia.com/www.tuaw.com/media/tuaw-cafepress-promo.png)


Reader Comments (Page 1 of 1)
Dave Teare said 11:27PM on 11-08-2006
Thanks for the post!
We really enjoyed working on 2.0 and the "kitchen sink" features will be coming shortly ;)
Cheers!
--Dave Teare
Co-author or 1Passwd.
Reply
JH said 2:09AM on 11-09-2006
How do I know this program is not secretly sending my passwords to the author ?
Sounds like a great way to get completely screwed over.
Reply
NightOne said 8:16AM on 11-09-2006
1Passwd doesn't send your passwords to the authors. I suppose you could use a program like Little Snitch to prove this, but I don't need any proof. 1Passwd is a great program and the authors will make money by selliing it and not by getting your information. Besides, if they had some evil intent, wouldn't they make it freeware?
Try it. You'll like it.
Reply
NightOne said 12:12PM on 11-09-2006
1Passwd doesn't send your passwords to the authors. I suppose you could use a program like Little Snitch to prove this, but I don't need any proof. 1Passwd is a great program and the authors will make money by selliing it and not by getting your information. Besides, if they had some evil intent, wouldn't they make it freeware?
Try it. You'll like it.
Reply
JH said 9:04AM on 11-09-2006
I did try the program (for free) and thats when it dawned on me that I was literally putting in all my passwords to this one program that I no nothing about. I am not saying they do this what Im saying is there is no secondary confirmation to the authenticity of the program that it does not do anything... If apple made this program I would trust it or adobe , etc... but is there any security type companies that have authenticated this program as "safe". I am not saying they are not - in fact I loved the whole concept its just scares me to think that this could be the greatest trojan horse ever written. Imagine thousand og users throwing every password and user name into every site they use including banking and paypal then during the update check slipping the data file back to the company. Thats what scared me after I started playing around with it.... They need to have it certified by a respected company.. its just to risky otherwise.....
Reply
Roustem Karimov said 11:04AM on 11-09-2006
JH, our business model is simple -- we create and sell a great product that is useful to 99.9% of Mac users. I cannot give you the sales numbers but if you check the download stats on VersionTracker and MacUpdate, you will see that 1Passwd became the most popular password manager for Mac OS X. Even from the pure business sense (setting all moral issues aside) it makes no sense for us to sacrifice the long term success for something of ambiguous value. Moreover, it is not just about the Mac software business, it is also about the reputation in IT consulting David and I built over the last decade.
Softpedia posted the following information about 1Passwd:
http://mac.softpedia.com/get/Internet-Utilities/1Passwd.shtml
"Softpedia guarantees that 1Passwd 2.0.3538 is 100% CLEAN, which means it does not contain any form of malware, including but not limited to: spyware, viruses, trojans and backdoors.
This software product was tested thoroughly and was found absolutely clean, therefore it can be installed with no concern by any computer user. However, it should be noted that this product will be retested periodically and the award may be withdrawn, so you should check back on this page from time to time."
If anyone knows about any other independent service that can certify 1Passwd, please let us know.
Thank you,
Roustem Karimov
Co-creator of 1Passwd
Reply
Janak Parekh said 11:10AM on 11-09-2006
"If apple made this program I would trust it or adobe , etc... but is there any security type companies that have authenticated this program as 'safe'."
See, that's where I disagree with you. I don't really trust Adobe or Microsoft with my information any more than little parties -- why should I? As it stands, you trust your information with parties both big and small every day.
In this case, I used my 'gut' -- I checked out the website, the blogs of the authors, and most importantly, I was really impressed with the immediate feedback they give on the support forums. I've never seen spyware folks work like that, and these guys are writing these tools because they're geeks, like us, who saw a need and filled it. In general, there are tons of password and wallet management programs out there, and I've never heard of any of them spying and sending your information out.
If you're still not convinced, you could learn to use a tool like tcpdump to monitor your Internet connection. It's bundled in OS X (try 'man tcpdump' at Terminal; it does demand knowledge of the UNIX command-line interface). Alternatively, you could also use an interactive firewall or GUI packet monitoring tool to monitor your outbound connection.
Reply
bingo said 11:38AM on 11-09-2006
I went to their site and watched the tutorials and even went thru some forum posts. Until they can support multiple credit cards and user-added e.g. localised fields (i.e. Street translates to "Strasse" or "Straße" in German) I really don't see the huge advantage over and above using Keychain... I also use the secure note feature for every new username/password I enter/change (just to make sure I have a backup in case I mistype and Keychain stores the new access details!) and these can't be imported in the current version. Maybe 1Passwd 3.0 is what I'm after...
Reply
Roustem Karimov said 11:48AM on 11-09-2006
bingo,
Perhaps you can help us to add support for using Identities on German websites? Send an email to 1passwd@agilewebsolutions.com if you wish to help.
Reply
JH said 1:06AM on 11-10-2006
I am not saying it does send my anything I truly believe the software is safe - I just wish I could feel more comfortable about certification and reputation thats why if Apple owned this program I would trust it because the massive lawsuits that would hit them if this thing was a trojan... It just scares me to trust a program that has not been certified by a bonded independent security company like Norton or something where their reputation is everything. Im not saying 1passwd rep is nothing but lets face I have never heard of them before and Im suppose to just hand over the keys to my bank accounts to them because they say "trust me" a lot of damage can happen if this were a trojan - Im not saying it is but its what crossed my mind when I was testing it. I wish Apple would buy the rights and incorporate it into OS X . One day someone will have their brokerage account hacked and will say to themselves was it 1passwd did it do something.... its just scary to hand over all passwords to one program and say to yourself these guys sound legit. I know they are but its what goes through my mind everytime I see one of these type programs....
No offense to the company in any way I truly believe the software is sound I just wish it could be "certified" somehow....
Reply
Roustem Karimov said 11:38PM on 11-10-2006
Joe Kissel and TidBITS published a book on password management in OS X:
Take Control of Passwords in Mac OS X
http://www.takecontrolbooks.com/passwords-macosx.html
This book includes the review of different password managers, including 1Passwd.
Reply