Page 1 of 1

Integration with password managers

Posted: Sat Apr 30, 2011 3:47 pm
by iandunn
Last year my computer got infected with a virus and it stole the passwords I had saved in SmartFTP for about 100 FTP sites. It then logged into all of those sites and infected dozens of files on each site with trojans. It took me two weeks to clean everything up. I'm not the first person this has happened to, either (1, 2, 3).

Since then I've stopped saving passwords in SmartFTP completely, but now it's a pain in the ass to have to type the password in each time I connect to a site. It'd be a huge improvement if SmartFTP could integrate with some of the popular password managers, like KeePass and 1Password. That way, passwords could be stored securely in a central location and automatically filled in. Web browsers are already doing this.

Yes, there would still be other ways to steal the passwords, but that's not a good reason to avoid doing this. You lock your doors even though a thief can always just break a window...

Re: Integration with password managers

Posted: Sat Apr 30, 2011 5:20 pm
by mb
There are actually plans for this. But if you care about security you shouldn't use plain-text passwords in the first place. Instead use certificates (with a private key, non-exportable) stored in the Windows cert store. Once your computer is infected, all password can be extracted from any FTP client with very little effort, regardless of the way they are stored.

Re: Integration with password managers

Posted: Tue May 03, 2011 1:43 pm
by iandunn
Thanks, I'm glad to hear it's being worked on

Re: Integration with password managers

Posted: Sat Mar 19, 2016 3:34 am
by mb
SmartFTP supports KeePass (free) and LastPass.