A few weeks ago LastPass had a serious breach of data. I don’t like to talk about the competitors, but this unlucky event generated a lot of articles, concern and fear. It also caused an increase in emails from Passpack users who are seriously concerned about their security and want to understand if what has happened to [...]
Time after time, there are users that ask for the possibility to share “masked passwords” with other people. What is a “masked password”? It is something that you share with another user in a way that allows him to use it (for example for autologin) without actually seeing the password itself. When I respond that [...]
We previously mentioned our thoughts on Passpack and OpenID. The feedback was almost unanimous. You as users all seemed to be opposed to the idea of having a Passpack whitelitst for OpenID providers. Just for clarity’s sake, the idea only came into our heads because we were trying to keep consistent with level of security [...]
We have linked to a few of the common threats OpenID poses and will talk more about them in the future. Now, I’d like to address one in particular, which has inspired this post and brought up a very important issue regarding Passpack’s support of OpenID. Let’s have a look at the problem… Here’s What [...]
Passpack’s recent announcement of soon becoming an OpenID supporter sparked quite a few questions. One of those questions in particular requires a post to be answered – “How will Passpack support OpenID and at the same time prevent phishing?” Passpack has always dedicated itself to ensuring full user security and privacy and it always will. [...]
Passpack is built to make sure that not even we can read your passwords. But – how can that be? How does it work? Folks are often frightened away by reading uninvited technical explanations. They underestimate themselves, hear cryptography and host-proof hosting and think – “oh no, that’s too hard! run – run!” We have [...]
This is under-the-hood explanation of how the Autologin button works. The tool is only for Passpack users. Updated on Aug. 1, 2007
Passpack defined an anti-phishing mechanism which allows you (yes you) make sure you are connected to Passpack, and not to a malicious copycat website.
The first question new Passpack users ask during sign up, without fail, is: I just chose a User ID and Pass, why do I need a Packing Key too?
Since Yesterday, PayPal is not sending us confirmation notification of the payments. So the system is unable to update the status of the accounts. We could do this manually, but when PayPal will solve the issue, it will probably send all the notifications and this could create worse issues. So, we are waiting for a while. If nothing happens, we will fix the updates manually.
UPDATE, Jan. 29. The strategy worked because PayPal sent all the notification at one moment, and all the accounts have been upgraded correctly.
We completed the performance improvement of Passpack moving the static files on a new server. This improves also the general security because it is now much harder for an attacker to try to inject Javascript code.
Passpack has discontinued Google Gears support. It was used with slow browsers like Internet Explorer 6 or 7. If you use one of these browsers, probably your account will become really slow without Google Gears. We strongly suggest to upgrade to IE 9 or to a totally different browser like Chrome.
Follow-up to the last post, the billing system is completely functional again. Happy Tuesday!
©2006-2013 Passpack Srl, IT09762401009. We're happy to participate in the open source community.
