Forum Discussion

rmpel's avatar
rmpel
New Contributor
4 years ago

change request: "Password required every two weeks" - remove, change or make optional

Hi. Being a long long time user of 1Password, this is the first time I am genuinely bothered by a feature of the software; The "Password required every two weeks" feature. I know it is "for secu...
betas
rmpel's avatar
rmpel
New Contributor
4 years ago

EnerJi
I suspect at least one company I work for has a 1P4B account at work as they have precise control over who gets to see which vault. And I'm sorry, I'm mixing up the words vault and account. We used to have only 1 vault per account (I'm THAT old).

My Primary account is a personal one, with only 1 vault, and have a secondary and tertiary (and for a brief time a quaternary) account with multiple vaults. At current time, I unlock with my personal account for which I simplified the password to a memorable one, instead of 32 random characters -- which reduces security. Then I need to get the password for the other accounts from 1Pass itself.
It's doable, but annoying.

A "full unlock" with the primary account password would therefore be a great solution, and, if memory serves, in 1P 7 and before, this used to be the case.

Your remark about this feature being for "availability", I can understand that point of view. But I don't want to use rememberable passwords. If I can remember it, I can leak it.
And with that comes repetition; my dad (79) uses LastPass (because it's Dutch, not because it's good -- sidenote; when are you translating to Dutch please, 1P ?? I offered to help a few times a while back, doing so again now ;) ). Even with LP, he uses the same password practically everywhere. ... why? because he can remember it.

Anyways, I digress.

Jack_P_1P
I understand biometry can fail, but so does a persons mind. So for security/continuity, the primary password should be stored in hardcopy in a safe anyways (again; in my opinion ;) ), or with a family member (assuming you can trust them, obviously).

The trick with "same passwords for all accounts", I will use, although that too feels far less secure, because now I have 3 accounts with the same rememberable password ...

As for the article by Jeffrey; I understand! (good read by the way, and I can relate to much if not all of the history ;) )
But I also agree fully with the words of shadcollins in that thread.

Maybe it's just a matter of getting used to it, I don't know. But the comfort and ease of use I experienced with 1P before is diminished by this "feature". I don't like it. I might have to get to like it, I probably don't have a choice, but a diminished UX nonetheless.

Anyways, thank you all for your time, appreciate it!

Remon.