[pwman]

Full Disclosure: I work at LastPass.

> "Turning on 2FA did not worked most of the times"

If you have a security issue here we'd appreciate a report at https://lastpass.com/security/ that said every report of this has always been a case of someone not reading the manual or FAQs so please checkout https://lastpass.com/support.php?cmd=showfaq&id=2775 first.

> "Sorry but I will never give trust to a password manager written in PHP"

The password manager is actually written in C++,Objective-C,Java,C# and JavaScript -- depending on platform. You seem to be focused on our website however (which only handles encrypted data with a key never get) which is written in Hack: http://hacklang.org/ actually, not PHP.

Regarding the user experience being less without extensions installed -- yes, that's true, we highly encourage installing those -- the extension-less access should really be used for emergencies only -- it's safer to login to the extensions since it's not relying on JavaScript you just downloaded, it's always preferred.

[therealmarv]

Big thanks for clarifying! But it seems I'm not the main target audience because I do not want to use Lastpass for all my passwords (personal preference) and I also do not want to force coworkers to use browser plugins just for exchanging passwords once in a while.

[pwman]

Understood -- you may want to consider a combination open source command line version + mobile + mac apps:

https://github.com/LastPass/lastpass-cli

If your coworkers aren't using something they're likely reusing company passwords, which is one of the key reasons to force using the extensions.