[breadandcrumbel]

I was only familiar with Keepass. What are the differences between all the different products? KeypassXC, KeepassX and Keepass?

[AdamGibbins]

Keepass uses .NET, so is dependant on the mono framework etc on non-Windows.

KeepassX is no longer maintained.

KeepassXC is maintained and more featured, it's also not dependant on .NET.

[tunesmith]

For mac users, there's also MacPass (https://macpassapp.org), which is Keepass compatible.

[random3]

Seeing the issue for Yubikey still open after 6 years, it doesn't inspire any confidence https://github.com/MacPass/MacPass/issues/90

[apta]

Wouldn't this sort of software be better written in a safe language like C# as opposed to C++?

[sha666sum]

It runs locally, and if the attacker has that much access, in most scenarios there isn't anything stopping your adversary from just logging your keystrokes and curling the keystore to a remote server.

[sebazzz]

Yes and no. In a language like C++ you might have more control on encrypting and zeroing out sensitive memory.

[moocowtruck]

no how else would we get your passwords?

[kijiki]

Keypass is written in C#, so requires a .NET runtime.

KeypassX is a rewrite in C++, using QT. KeypassXC is a fork of KeypassX, as KeypassX was felt to be unmaintained.

[JohnTHaller]

> KeypassX was felt to be unmaintained

KeypassX was abandoned 3 years ago

[bscphil]

Actually it's still receiving commits, the maintainer just doesn't have a lot of time for it. https://github.com/keepassx/keepassx/commits/master

[delibratamateur]

Hey bscphil, if you'll recall you made a comment about 5 months ago saying that you were playing around with augmenting CarpalX to allow moving around the symbol keys in the model. I am interested in breaking down the model. Is there a place I'd be able to contact you?

[JohnTHaller]

Not sure if a single commit of two includes in the last two years really counts.