Recommended Posts

Hey, so I've started using LastPass and I'm in the process of updating passwords to randomly generated ones.

This is fine when I'm using my own computer, as the plugin is installed so all I need to remember is my master password.

But what's the solution if I'm using a different computer and can't install the plugin? (e.g. public computer, friend's computer etc)

Link to comment
https://www.neowin.net/forum/topic/985678-using-lastpass-without-plugin/
Share on other sites

just access the lastpass website and you can access all your passwords.

you could also store passwords on thumbdrive, etc.

http://helpdesk.lastpass.com/lastpass-portable/

https://lastpass.com/support_faqs.php

AES utilizing 256-bit keys.AES-256 is accepted by the US Government for protecting TOP SECRET data. AES is implemented in JavaScript for the LastPass.com website, and in C++ for speed in the Internet Explorer and Firefox plug-ins. This is important because your sensitive data is always encrypted and decrypted locally on your computer before being synchronized. Your master password never leaves your computer and your key never leaves your computer. No one at LastPass (or anywhere else) can decrypt your data without you giving up your password (we will never ask you for it). Your key is created by taking a SHA-256 hash of your password. When you login, we make a hash of your username concatenated with your password, and that hash is what's sent to verify if you can download your encrypted data.

Your LastPass Master password and encryption key generated from it never leaves your computer - so you are the only person who can decrypt your data

passwords are never "displayed" in clear text. Unless you go into the interface and say show.

You can copy the usernames and passwords from the website from a public computer, or you could use a complete portable solution with say firefox on a usb and lastpass on the usb as well.

  On 28/03/2011 at 16:40, xWhiplash said:

So when you log in to it on a public computer without the plugin, are the passwords displayed in plain text? How does it work on public machines?

Yeah you're able to copy + paste without revealing the passwords themselves, though you can 'show' if you want (which is a little too easy to click for my liking, but it's ok)

  On 27/03/2011 at 17:30, Bhav said:

Hey, so I've started using LastPass and I'm in the process of updating passwords to randomly generated ones.

This is fine when I'm using my own computer, as the plugin is installed so all I need to remember is my master password.

But what's the solution if I'm using a different computer and can't install the plugin? (e.g. public computer, friend's computer etc)

Ohhh interesting, didn't know it did this.

I'll have to go have a look at it, I assume there is a firefox extension? Yes I know pretty lame thing to ask when it takes a minute to look up, but I'm heading out in 5.

  On 28/03/2011 at 17:20, Audioboxer said:

Ohhh interesting, didn't know it did this.

I'll have to go have a look at it, I assume there is a firefox extension? Yes I know pretty lame thing to ask when it takes a minute to look up, but I'm heading out in 5.

Yeah if you just download the exe off the website, you can install plugins for Firefox, IE and Chrome in one go.

And the plugin itself has the random generator, with which you can specify number of characters, upper/lower case, numbers etc.

It usually detects that you're changing passwords too, so a little bar drops down offering to fill your current password and generate a new one. Pretty clever really.

There are lots of LastPass guides/tips you might want to google for, as they give a good idea of all its nifty features.

Hmm...maybe I'm wrong, looks like copy + pasting without revealing doesn't work, it just pastes the masked dots.

So yeah this seems like a bit of a weakness.

On the one hand, you can log into your lastpass account anywhere, create a bookmarklet and that will let you log into wherever you need.

On the other hand, if you log into your lastpass account, you can easily reveal your password by clicking "show"...which obviously shouldn't really be so simple.

I guess that's why the master password needs to be extremely strong.

(The bookmarklet also works on Android)

Edit: Oh! When you log into the lastpass website, you can just double click on the site you want to log into. So no need to go anywhere near revealing the password. You just double click, it takes you to the site and tries to log in.

http://forums.lastpass.com/viewtopic.php?f=12&t=114&start=0

  On 28/03/2011 at 17:57, Bhav said:

Hmm...maybe I'm wrong, looks like copy + pasting without revealing doesn't work, it just pastes the masked dots.

So yeah this seems like a bit of a weakness.

On the one hand, you can log into your lastpass account anywhere, create a bookmarklet and that will let you log into wherever you need.

On the other hand, if you log into your lastpass account, you can easily reveal your password by clicking "show"...which obviously shouldn't really be so simple.

I guess that's why the master password needs to be extremely strong.

(The bookmarklet also works on Android)

Edit: Oh! When you log into the lastpass website, you can just double click on the site you want to log into. So no need to go anywhere near revealing the password. You just double click, it takes you to the site and tries to log in.

http://forums.lastpass.com/viewtopic.php?f=12&t=114&start=0

Awesome! I'm just back and was doing a bit of reading and it's good to see it'll be easy to use sites on other people's computers. I was a bit apprehensive to use generated passwords as there is NO chance I'm remembering them :laugh:

  On 28/03/2011 at 18:05, Audioboxer said:

Awesome! I'm just back and was going a bit of reading and it's good to see it'll be easy to use sites on other people's computers. I was a bit apprehensive to use generated passwords as there is NO chance I'm remembering them :laugh:

Yeah precisely, that was my apprehension too. But actually my using of firefox has changed very little because everything is just saved in a very similar way to the built-in password manager. The make-or-break will be whether or not it works smoothly when I'm using a different computer...which I'll test properly later.

  On 27/03/2011 at 17:33, BudMan said:

just access the lastpass website and you can access all your passwords.

you could also store passwords on thumbdrive, etc.

http://helpdesk.lastpass.com/lastpass-portable/

Have been using lastpass for a while now but never knew about this thanks :D

Ah damit.

So just went onto my brother's computer, which doesn't have the plugin installed.

Logged into lastpass.com, tried double clicking on a site in my list of logins, and it just opens up that entry and offers to show the password.

I guess that'll get the job done, but it's not ideal. So the most appropriate solution will be to use a bookmarklet (or the portable usb thing, which is too much hassle imo)

  On 28/03/2011 at 18:08, Bhav said:

Yeah precisely, that was my apprehension too. But actually my using of firefox has changed very little because everything is just saved in a very similar way to the built-in password manager. The make-or-break will be whether or not it works smoothly when I'm using a different computer...which I'll test properly later.

When you're on another computer without lastpass and you login to your vault, double clicking or clicking visit URL does NOT automatically enter the password. You have to manually copy it which means clicking show.

edit: Just noticed your post above :p

  On 28/03/2011 at 18:47, Bhav said:

Yeah, think I might post on the official forums, see if they have a solution (or at the very least, highlight that it's something they should look into).

Bookmarklets does the trick, the only thing is if you leave it as a bookmark on someones PC can they not just have a field trip with your passwords? Guess you just have to remember to log out of lastpass.com.

  On 28/03/2011 at 18:51, Audioboxer said:

Bookmarklets does the trick, the only thing is if you leave it as a bookmark on someones PC can they not just have a field trip with your passwords? Guess you just have to remember to log out of lastpass.com.

Yeah you need to log out. Again, not ideal.

It really would be the best solution if you could just double click!

Anyway, will see what they say over there.

http://forums.lastpass.com/viewtopic.php?f=12&t=65639

  On 28/03/2011 at 18:56, Bhav said:

Yeah you need to log out. Again, not ideal.

It really would be the best solution if you could just double click!

Anyway, will see what they say over there.

http://forums.lastpass.com/viewtopic.php?f=12&t=65639

Look forward to seeing if there's any other solutions. I don't think they'll be able to get it working from double clicking - I think that only works for us as the plugin is installed. Don't think there will be a way to inject your username/password on a vanilla setup, hence why they have the bookmarklet option.

Hmm yeah you're probably right there...I'm guessing it's the whole local encryption/plugin combo.

Gah, well I guess the bookmarklet is workable in most situations I'm likely to come across...and perhaps a relatively small price to pay for security.

While I was reading up on this, it kinda dawned on me how poor my password set up was. I mean, if one crappy website/forum I'd signed up to revealed my email address and password, anyone would have access to my amazon, play.com, paypal etc. Would be a *slight* disaster :unsure:

  On 28/03/2011 at 19:03, Bhav said:

Hmm yeah you're probably right there...I'm guessing it's the whole local encryption/plugin combo.

Gah, well I guess the bookmarklet is workable in most situations I'm likely to come across...and perhaps a relatively small price to pay for security.

While I was reading up on this, it kinda dawned on me how poor my password set up was. I mean, if one crappy website/forum I'd signed up to revealed my email address and password, anyone would have access to my amazon, play.com, paypal etc. Would be a *slight* disaster :unsure:

Same I used the same password for nearly everything, with a little bit of variation on some sites.

I guess the scare with lastpass though is if anyone gets THAT password you're royally ****ed :p

you can always recover the password, and since you would be using the password prob daily, if not multiple times a day - if you forget it you clearly are severely mentally challenged ;) And prob wouldn't know the difference between a computer and a etch-a-sketch anyway ;)

http://helpdesk.lastpass.com/account-recovery/

  On 28/03/2011 at 19:49, BudMan said:

you can always recover the password, and since you would be using the password prob daily, if not multiple times a day - if you forget it you clearly are severely mentally challenged ;) And prob wouldn't know the difference between a computer and a etch-a-sketch anyway ;)

http://helpdesk.lastpass.com/account-recovery/

Me? I wasn't talking about forgetting my password, I meant if someone found it out :p

This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Posts

    • “Ask Photos” is coming to more Google Photos users in the US by Paul Hill Google has announced several improvements to a Gemini-powered Google Photos feature called Ask Photos. The feature launched last year in early access and it was great for longer search requests, however, when users typed “Dog” or “Beach” looking for those types of pictures, Ask Photos underperformed. Now, Google has addressed this and is bringing the feature to more eligible users in the United States. The search giant said that users enjoyed asking queries such as “suggest photos that’d make great phone backgrounds” or “what did I eat on my trip to Barcelona?” and getting Gemini-powered responses to these complex questions. Unfortunately, simple searches like “beach” or “dogs” were generating less than optimal results and people complained. To remedy the situation, Google has brought the best of Google Photos’ classic search feature to Ask Photos to improve latency. Easy, short requests will be dealt with by the old search mechanism and when you ask complex queries, it will switch over to the Gemini-powered search results. Now that Google has addressed this main issue of simple searches by integrated functionality from the previous search model, the company feels more confident to open up beyond early access and deliver it to more users in the United States. To be eligible, you must be 18+, be in the US, have your Google Account language set to English (United States), and have Face Groups turned on. This feature is only available on Android and iOS. To start using it, open Google Photos and tap on Ask at the bottom, then press Try now and agree to the terms. If you do not see the Ask button, it means you’re not yet eligible. The feature also can’t be used on computers yet. Hopefully, Google will quickly expand this feature outside the US so that international users can try it out too.
    • When are MS going to learn. Traditional home users who email, watch cat videos and perform basic tasks don't care if W11 is slightly faster...assuming it's true. Few home users care about faster speed and more secure claims.
    • They have. https://www.xda-developers.com...-25h2-update-kind-of-small/
    • Microsoft shares detailed performance benchmarks for Windows 11 vs 10 to show the faster PC by Sayan Sen In the past, Microsoft has always made big claims regarding Windows 11 performance and how it is faster and better than Windows 10. For example, back in 2021, the company stated how the former was designed to get the best out of your system hardware. Later in 2023, Microsoft shared detailed Windows 11 performance improvements and upgrades it achieved on the new OS. While the claims were not substantiated with data, they were certainly quite interesting. Then, in 2024, Microsoft highlighted the differences in performance, citing a paid study, to show Windows 11 was way faster. As with most commissioned studies, the data was not represented fairly. This week, Microsoft has shared new numbers based on its December 2024 testing in a new support document. Here are the performance claims Microsoft made: Top Windows 11 PCs have up to 2.7 more hours of battery life than Windows 10 PCs Windows 11 PCs are up to 2.3x faster than Windows 10 PCs Windows 11 PCs offer up to 3.2x faster web browsing than Windows 10 PCs Windows 11 PCs offer up to 2x faster Microsoft Office productivity than Windows 10 PCs Thus, if you ask Microsoft, it will say that Windows 11 is better than Windows 10 in everything there is, be it web browsing, Office use, battery life, and overall performance in general. The company notes that the results are "based on a 95% confidence interval" for each OS across multiple tests. Microsoft also accounted for outliers. To reach such numbers, Microsoft used the following test metrics: For battery life, a local 1080p 24 fps MP4 video file playback was tested till 90% battery discharge on the Windows Media Player app. During the test, all settings were default except that screen brightness was set to 150 nits and Auto-brightness was disabled. Wi-Fi was connected to a network. For the "2.3x faster" claim, Geekbench 6 results have been cited. For web browsing, Speedometer was used, though Microsoft does not mention the version. And finally, for Office, Procyon Office productivity was used. Interestingly, Microsoft only used Intel CPUs (the company also recently recommended Intel chips for Windows 11 Pro PCs). The company has played it a smarter this time as it has "tested performance, battery life and application capabilities of a selection of Windows 11 PCs in comparison to a selection of Windows 10 PCs", where the Windows 10 PCs feature Intel Core 6th, 8th, and 10th gen chips and Windows 11 PCs pack Intel Core 12th and 13th gen. Thus, this is Microsoft essentially acknowledging that the underlying hardware itself actually plays a big role in the claims it has made. But to be fair to the company, there is also no way to run Windows 11, at least officially, on unsupported PCs, such that a direct comparison can be made. You can find the support document with full battery results in this article here on Microsoft's website.
    • So, do nothing basically, as long as you deploy Windows Updates? Pretty much yeah. Some Linux distros distribute update the secureboot certs as well, assuming you do use SecureBoot.
  • Recent Achievements

    • Week One Done
      Marites earned a badge
      Week One Done
    • One Year In
      runge100 earned a badge
      One Year In
    • One Month Later
      runge100 earned a badge
      One Month Later
    • One Month Later
      jfam earned a badge
      One Month Later
    • First Post
      TheRingmaster earned a badge
      First Post
  • Popular Contributors

    1. 1
      +primortal
      567
    2. 2
      +FloatingFatMan
      177
    3. 3
      ATLien_0
      169
    4. 4
      Michael Scrip
      127
    5. 5
      Xenon
      119
  • Tell a friend

    Love Neowin? Tell a friend!