It was compounded by thousands of companies not paying for any level of redundancy. How many services like AgileBits were affected when a *SINGLE* AWS datacenter lost part of it's storage infrastructure? That was due to human error, not even an attack. Furthermore, any user running 1password could easily discover those "obscure URL's" by watching DNS lookups and which connections their computers are making to the internet while the software is running. Scripting a DDOS attack to transistion to new IP's as DNS records are updated is very basic level stuff, so "obscure URL's" doesn't quite work the way you think they do. The internet is a lot darker than you can apparently imagine. Further, you seem to lack an understanding of how URL's (and by this, I'm assuming you mean DNS records) and IP's work.ĭDOSing mulitple IP's can be done easily for days for a few hundred dollars if you know the right place to look. I would never suggest that Agilebits is stupid enough to have a single "easily DDOSed IP". Your oversimplification of this is embarrassing at best. Agilebits is asking us to put ALL of the eggs in THEIR single basket. There's a saying about not putting all of your eggs into a single basket. But I have versioning, and backups, and the ability to affect change on how secure my vaults are when I control the vault's location. What about license keys? How many hours would it take you to rebuild that?Ĭan the same thing happen if you are storing your vault somewhere else? Sure. What do you lose if you lose access to your vault? Passcodes, sure. It can still be taken out of your control. Sound familiar at all? Sure, the vaults are encrypted, assuming security is up-to-snuff and the code is bug free, there shouldn't be a way for said attacker to open your vault. Let's suppose that Agilebits security is compromised by a three letter agency, and that compromise is later exploited by hackers/extortionist. What happens to your vaults, Rene, if Agilebits comes under a DDOS attack? Can you access everything you need to access? For how long? Suggesting that those of us who choose not to trust Agilebits with our vaults are wanting something free/cheap is insulting and completely glosses over the security and system implications of the move. I have over $150 in licenses for 1password alone. I don't expect it to be free, and did not mind paying for it. Especially in the age of pop apps, where everything is expected to be free all the time.ġpassword was not a free app. It's ultimately better for customers too, but people hate change and often have a hard time seeing beyond the here-and-now - even for something as important as security software. To put it bluntly, AgileBits is moving to a more sustainable business model that will allow them to better develop and support 1Password (opens in new tab) now and into the future. But 1Password memberships are indeed awesome and are the best way to use 1Password, and as such, I am going to continue to nudge you over when ever I can □. 1Password 6 and even 1Password 7 will continue to support standalone vaults. In fact we're still selling licenses of 1Password 6 for Mac for those that really need them (you can find them today on the setup screen under More Options).And you need not worry about 1Password 7 for Mac, either, as it will continue to support standalone vaults just like version 6 does today.We know that not everyone is ready to make the jump yet, and as such, we will continue to support customers who are managing their own standalone vaults. There's no requirement to change anything as we will not be removing features or forcing you to subscribe. Some of that has now been corrected by co-founder Dave Teare on the AgileBits blog (opens in new tab):įor those who purchased 1Password 6 for Mac already, you're perfectly fine the way you are and can continue rocking 1Password the way you have been.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |