Recommended Posts

Hey, so I've started using LastPass and I'm in the process of updating passwords to randomly generated ones.

This is fine when I'm using my own computer, as the plugin is installed so all I need to remember is my master password.

But what's the solution if I'm using a different computer and can't install the plugin? (e.g. public computer, friend's computer etc)

Link to comment
https://www.neowin.net/forum/topic/985678-using-lastpass-without-plugin/
Share on other sites

just access the lastpass website and you can access all your passwords.

you could also store passwords on thumbdrive, etc.

http://helpdesk.lastpass.com/lastpass-portable/

https://lastpass.com/support_faqs.php

AES utilizing 256-bit keys.AES-256 is accepted by the US Government for protecting TOP SECRET data. AES is implemented in JavaScript for the LastPass.com website, and in C++ for speed in the Internet Explorer and Firefox plug-ins. This is important because your sensitive data is always encrypted and decrypted locally on your computer before being synchronized. Your master password never leaves your computer and your key never leaves your computer. No one at LastPass (or anywhere else) can decrypt your data without you giving up your password (we will never ask you for it). Your key is created by taking a SHA-256 hash of your password. When you login, we make a hash of your username concatenated with your password, and that hash is what's sent to verify if you can download your encrypted data.

Your LastPass Master password and encryption key generated from it never leaves your computer - so you are the only person who can decrypt your data

passwords are never "displayed" in clear text. Unless you go into the interface and say show.

You can copy the usernames and passwords from the website from a public computer, or you could use a complete portable solution with say firefox on a usb and lastpass on the usb as well.

  On 28/03/2011 at 16:40, xWhiplash said:

So when you log in to it on a public computer without the plugin, are the passwords displayed in plain text? How does it work on public machines?

Yeah you're able to copy + paste without revealing the passwords themselves, though you can 'show' if you want (which is a little too easy to click for my liking, but it's ok)

  On 27/03/2011 at 17:30, Bhav said:

Hey, so I've started using LastPass and I'm in the process of updating passwords to randomly generated ones.

This is fine when I'm using my own computer, as the plugin is installed so all I need to remember is my master password.

But what's the solution if I'm using a different computer and can't install the plugin? (e.g. public computer, friend's computer etc)

Ohhh interesting, didn't know it did this.

I'll have to go have a look at it, I assume there is a firefox extension? Yes I know pretty lame thing to ask when it takes a minute to look up, but I'm heading out in 5.

  On 28/03/2011 at 17:20, Audioboxer said:

Ohhh interesting, didn't know it did this.

I'll have to go have a look at it, I assume there is a firefox extension? Yes I know pretty lame thing to ask when it takes a minute to look up, but I'm heading out in 5.

Yeah if you just download the exe off the website, you can install plugins for Firefox, IE and Chrome in one go.

And the plugin itself has the random generator, with which you can specify number of characters, upper/lower case, numbers etc.

It usually detects that you're changing passwords too, so a little bar drops down offering to fill your current password and generate a new one. Pretty clever really.

There are lots of LastPass guides/tips you might want to google for, as they give a good idea of all its nifty features.

Hmm...maybe I'm wrong, looks like copy + pasting without revealing doesn't work, it just pastes the masked dots.

So yeah this seems like a bit of a weakness.

On the one hand, you can log into your lastpass account anywhere, create a bookmarklet and that will let you log into wherever you need.

On the other hand, if you log into your lastpass account, you can easily reveal your password by clicking "show"...which obviously shouldn't really be so simple.

I guess that's why the master password needs to be extremely strong.

(The bookmarklet also works on Android)

Edit: Oh! When you log into the lastpass website, you can just double click on the site you want to log into. So no need to go anywhere near revealing the password. You just double click, it takes you to the site and tries to log in.

http://forums.lastpass.com/viewtopic.php?f=12&t=114&start=0

  On 28/03/2011 at 17:57, Bhav said:

Hmm...maybe I'm wrong, looks like copy + pasting without revealing doesn't work, it just pastes the masked dots.

So yeah this seems like a bit of a weakness.

On the one hand, you can log into your lastpass account anywhere, create a bookmarklet and that will let you log into wherever you need.

On the other hand, if you log into your lastpass account, you can easily reveal your password by clicking "show"...which obviously shouldn't really be so simple.

I guess that's why the master password needs to be extremely strong.

(The bookmarklet also works on Android)

Edit: Oh! When you log into the lastpass website, you can just double click on the site you want to log into. So no need to go anywhere near revealing the password. You just double click, it takes you to the site and tries to log in.

http://forums.lastpass.com/viewtopic.php?f=12&t=114&start=0

Awesome! I'm just back and was doing a bit of reading and it's good to see it'll be easy to use sites on other people's computers. I was a bit apprehensive to use generated passwords as there is NO chance I'm remembering them :laugh:

  On 28/03/2011 at 18:05, Audioboxer said:

Awesome! I'm just back and was going a bit of reading and it's good to see it'll be easy to use sites on other people's computers. I was a bit apprehensive to use generated passwords as there is NO chance I'm remembering them :laugh:

Yeah precisely, that was my apprehension too. But actually my using of firefox has changed very little because everything is just saved in a very similar way to the built-in password manager. The make-or-break will be whether or not it works smoothly when I'm using a different computer...which I'll test properly later.

  On 27/03/2011 at 17:33, BudMan said:

just access the lastpass website and you can access all your passwords.

you could also store passwords on thumbdrive, etc.

http://helpdesk.lastpass.com/lastpass-portable/

Have been using lastpass for a while now but never knew about this thanks :D

Ah damit.

So just went onto my brother's computer, which doesn't have the plugin installed.

Logged into lastpass.com, tried double clicking on a site in my list of logins, and it just opens up that entry and offers to show the password.

I guess that'll get the job done, but it's not ideal. So the most appropriate solution will be to use a bookmarklet (or the portable usb thing, which is too much hassle imo)

  On 28/03/2011 at 18:08, Bhav said:

Yeah precisely, that was my apprehension too. But actually my using of firefox has changed very little because everything is just saved in a very similar way to the built-in password manager. The make-or-break will be whether or not it works smoothly when I'm using a different computer...which I'll test properly later.

When you're on another computer without lastpass and you login to your vault, double clicking or clicking visit URL does NOT automatically enter the password. You have to manually copy it which means clicking show.

edit: Just noticed your post above :p

  On 28/03/2011 at 18:47, Bhav said:

Yeah, think I might post on the official forums, see if they have a solution (or at the very least, highlight that it's something they should look into).

Bookmarklets does the trick, the only thing is if you leave it as a bookmark on someones PC can they not just have a field trip with your passwords? Guess you just have to remember to log out of lastpass.com.

  On 28/03/2011 at 18:51, Audioboxer said:

Bookmarklets does the trick, the only thing is if you leave it as a bookmark on someones PC can they not just have a field trip with your passwords? Guess you just have to remember to log out of lastpass.com.

Yeah you need to log out. Again, not ideal.

It really would be the best solution if you could just double click!

Anyway, will see what they say over there.

http://forums.lastpass.com/viewtopic.php?f=12&t=65639

  On 28/03/2011 at 18:56, Bhav said:

Yeah you need to log out. Again, not ideal.

It really would be the best solution if you could just double click!

Anyway, will see what they say over there.

http://forums.lastpass.com/viewtopic.php?f=12&t=65639

Look forward to seeing if there's any other solutions. I don't think they'll be able to get it working from double clicking - I think that only works for us as the plugin is installed. Don't think there will be a way to inject your username/password on a vanilla setup, hence why they have the bookmarklet option.

Hmm yeah you're probably right there...I'm guessing it's the whole local encryption/plugin combo.

Gah, well I guess the bookmarklet is workable in most situations I'm likely to come across...and perhaps a relatively small price to pay for security.

While I was reading up on this, it kinda dawned on me how poor my password set up was. I mean, if one crappy website/forum I'd signed up to revealed my email address and password, anyone would have access to my amazon, play.com, paypal etc. Would be a *slight* disaster :unsure:

  On 28/03/2011 at 19:03, Bhav said:

Hmm yeah you're probably right there...I'm guessing it's the whole local encryption/plugin combo.

Gah, well I guess the bookmarklet is workable in most situations I'm likely to come across...and perhaps a relatively small price to pay for security.

While I was reading up on this, it kinda dawned on me how poor my password set up was. I mean, if one crappy website/forum I'd signed up to revealed my email address and password, anyone would have access to my amazon, play.com, paypal etc. Would be a *slight* disaster :unsure:

Same I used the same password for nearly everything, with a little bit of variation on some sites.

I guess the scare with lastpass though is if anyone gets THAT password you're royally ****ed :p

you can always recover the password, and since you would be using the password prob daily, if not multiple times a day - if you forget it you clearly are severely mentally challenged ;) And prob wouldn't know the difference between a computer and a etch-a-sketch anyway ;)

http://helpdesk.lastpass.com/account-recovery/

  On 28/03/2011 at 19:49, BudMan said:

you can always recover the password, and since you would be using the password prob daily, if not multiple times a day - if you forget it you clearly are severely mentally challenged ;) And prob wouldn't know the difference between a computer and a etch-a-sketch anyway ;)

http://helpdesk.lastpass.com/account-recovery/

Me? I wasn't talking about forgetting my password, I meant if someone found it out :p

This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Posts

    • Tesla instructor reportedly said staff leave with a 'negative taste in their mouth' by Hamid Ganji Tesla has been making the headlines over the past few months due to Elon Musk's controversy in the Department of Government Efficiency, aka DOGE. People have been marching to the streets, boycotting Tesla, and even setting their already-bought Tesla cars on fire. Tesla temporarily shut down its factory in Austin for the week of Memorial Day, and employees could either take paid time off or attend a series of training sessions. Business Insider now claims to have obtained a recording of the sessions that reveals some interesting details about the Tesla culture and how its employees feel about the company. The Tesla instructor reportedly asked employees to respond if they ever felt "I can't work under these conditions" and were uneasy about the company's constant change. "I know I have," the instructor said. "A lot of people leave this company, and they have kind of a negative taste in their mouth," the Tesla instructor added. "They think: 'Man, it was terrible. It was bad. I got burnt out. I feel like I didn't get anything done, nobody listened to me.'" Hundreds of Tesla employees allegedly attended the meetings, where they were asked to take more responsibility for improving the company's culture. "Leadership has kind of another level of responsibility for trying to guide and direct that culture," the instructor told Tesla staff. "But at the end of the day, it's us as the people on the ground that are the reflection of the culture." Tesla's factory in Austin produces Cybertruck and Model Y. The staff said shutting down the factory for the sake of Memorial Day has been unusual for the company. Elon Musk recently announced that he would leave his position at the White House and added that he'll remain Tesla CEO for another five years. In the meantime, the latest data shows Tesla sales in Europe have dropped 49 percent, and the company's profit in Q1 2025 declined by 71 percent.
    • More like you took offense to the letdown and I find it hilarious. Most people aren’t reading tech blogs, and for those that do, they know what the difference is. So really it’s a non-story to YOU, because you don’t like what it says.
    • Building 100 hospitals around the world would have spent his fortune easily. But that would not keep him at the table with the elites in the world for the rest of his life. Or keep him from chanting about how good he is to the poor people around the globe to the media.
    • Exactly. that's what I use when I do use Windows 10 on my Linux through QEMU/KVM VM (the 'activation' is tied to the UUID of the VM) and, like you said, that Jan 2032 version of Win10, even if decent program/game support ends earlier than Jan 2032, I suspect, for a conservative figure, that we got at least 2-3 years from now (so call it 2027-2028) before Win10 may start to become more of a legitimate issue. but for general usage I suspect we got a 'easy' 2-3+ years. because like you say, as long as browsers don't start to become a issue, all the more reason to continue using Win10 for many, probably most, people. even when it comes to browsers, you mentioned Firefox supports Win7 until end of August etc... but I think it's just ESR releases which, while I get it technically works, are when browser support is getting a bit long-in-the-tooth. but as long as the standard Firefox release is still supported, then one is still easily well within the 'good support range', which my comment basically plays inline with what Werct said, which I suspect comes back to my 2027-2028 estimate before Win10 'starts' to legitimately fade off into the sunset
    • Intel's new GPU driver adds support for FBC: Firebreak, Stellar Blade, and more by Taras Buria Intel has released a new non-WHQL driver under version 32.0.101.6876. The update brings support and optimizations for four games and a single fix for visual artifacts that appear in certain situations. Here is the list of newly-supported games in driver 32.0.101.6876 on systems with Intel Arc B-Series, A-Series, and Intel Core Ultra with built-in Arc graphics: FBC: Firebreak Rematch Stellar Blade Tom Clancy's Rainbow Six Siege X There is also a single bug fixed in today's release: Intermittent visual artifacts may appear in certain usage scenarios. Known issues remain the same as in the latest WHQL release, except for a new bug that causes audio glitches on handheld devices: Certain handheld devices may experience audio glitches and lower-than-expected performance while audio is playing. You can mitigate the problem by following a guide that Intel published on the official forum. It requires reinstalling the graphics and NPU drivers on the affected systems. A proper fix will be available in a future driver update. You can install Intel 32.0.101.6876 non-WHQL driver on PCs with 64-bit Windows 10 and Windows 11 with the following graphics products from Intel: Discrete GPUs Integrated GPUs Intel Arc A-Series (Alchemist) Intel Arc B-Series (Battlemage) Intel Iris Xe Discrete Graphics (DG1) Intel Core Ultra Series 2 (Lunar Lake and Arrow Lake) Intel Core Ultra (Meteor Lake) Intel Core 14th Gen (Raptor Lake Refresh) Intel Core 13th Gen (Raptor Lake) Intel Core 12th Gen (Alder Lake) Intel Core 11th Gen (Tiger Lake) You can download the driver from the official website here. Full release notes are available here (PDF). Keep in mind that this is a non-WHQL driver, which means it could be less stable than certified WHQL drivers.
  • Recent Achievements

    • Dedicated
      jbatch earned a badge
      Dedicated
    • Week One Done
      Leonard grant earned a badge
      Week One Done
    • One Month Later
      portacnb1 earned a badge
      One Month Later
    • Week One Done
      portacnb1 earned a badge
      Week One Done
    • First Post
      m10d earned a badge
      First Post
  • Popular Contributors

    1. 1
      +primortal
      266
    2. 2
      snowy owl
      158
    3. 3
      +FloatingFatMan
      145
    4. 4
      ATLien_0
      140
    5. 5
      Xenon
      131
  • Tell a friend

    Love Neowin? Tell a friend!