KeeFox Simple and secure password management
for Firefox users with KeePass

Error console can temporarily display passwords

I’ve just been made aware of a potential privacy concern which has been fixed in the latest version of KeeFox. Until you receive the updated version, please note that some of your passwords may be temporarily displayed in a console that is used for debugging. This “error console” is usually hidden from view and its contents are not retained but in certain circumstances this could be a problem so I’ve tried to fix it as quickly as possible.

If you do have this error console visible when using KeeFox 1.1.2 or earlier, please be extra wary of people looking over your shoulder when you log in to websites using KeeFox.

Also be aware that it is not possible to predict how long a password may remain visible somewhere in that error console so for extra security you could consider clicking on the “Clear” button at the top of the console window at a suitable time (e.g. when you would normally lock your KeePass database).

If you want to be the first to get the fixed version you can subscribe to the development (beta) channel but (although it is somewhat out of my control) I expect the fix to be made available to all KeeFox users soon.

Sorry for any inconvenience!

29 November 2012 01:57:55 | Tags: News, keefox, release, Releases

KeeFox 1.1.2 released

The recently released KeeFox 1.1.2 contains dozens of new and improved features and a few important bug fixes, the highlights are below.

  • Multiple database support. Seamlessly work with more than one KeePass database thanks to these improvements:
    • Logins from all open (unlocked) databases are matched (and automatically filled / submitted depending on your configuration)
    • Logins from all open databases are listed on the Logins toolbar button
    • A new login can be saved into any open database
    • Changing databases from within KeeFox is now reliable and predictable
  • Improved form matching accuracy: when KeeFox knows how many form fields to expect for an entry it will now use that information to help select the correct form on a page
  • Instant edit feature added: Review and edit every entry that KeeFox saves (disabled by default).
  • Memory leak fixed: This will be a big improvement for heavy Firefox users who do not shutdown Firefox for days or weeks at a time
  • Added option to require more accurate URL matching for specific entries (previously possible through a hidden KeePass “advanced string”)
  • Thunderbird support (in beta testing)
  • Improvements to setup instructions, especially for non-admin users and Mono (Mac & Linux) users
  • First-run improvements (e.g. automatic save of your first KeePass database and a link to information about importing existing passwords)

You should get 1.1.2 pushed to you automatically unless you have disabled Firefox add-on automatic updates. You can manually install it from the main Add-on page.

Known limitation: Newsgroup authentication prompts in Thunderbird do not work with KeeFox.

Apple Mac support: The immaturity of the Mono platform that Mac users require to make KeePass work is keeping KeeFox Mac support in beta testing for the time being. You can install the development version if you’d like to give it a try (it seems to mostly work if you have some patience and know what you’re doing)

Known bug: Shortly after the release of 1.1.2 I learnt that users who enable the Firefox master password (for use by other add-ons, Firefox Sync, etc.) sometimes experience problems entering the master password when prompted before Firefox has completely started. I have put a fix into version 1.1.3 which you can download from here: https://github.com/luckyrat/KeeFox/blob/ … d79301bb/XPI-package/latest.xpi?raw=true.

1.1.3 is an experimental build - although it has very few changes since the well-tested 1.1.2 it has not been thoroughly tested itself so I advise only installing it if you need to. I’ll monitor its usage and consider releasing it as an official tested version if it looks like enough people are affected by this bug.

I’ll be starting work on version 1.2 in a few weeks time so do let me know through the support forum if you find any bugs that I should be working on for that release. In the mean time, enjoy version 1.1!

8 October 2012 23:46:01 | Tags: News, development, keefox, KeePass, release, snapshot, Releases, linux, mac, mono

KeeFox 1.0

Version 1.0 of KeeFox has been released!

KeeFox adds free, secure and easy to use password management features to Firefox which save you time and keep your private data safe and under your control. KeeFox connects Firefox to KeePass Password Safe, the most popular open source (and free) password manager.

Four years, thousands of beta testers and seven international translations later I am delighted to say that KeeFox can be considered a stable add-on that is suitable for everyone to use.

Learn more and find out why hundreds of people think KeeFox deserves a 5 out of 5 star rating on the official home page: keefox.org

KeeFox is available for download from the official Firefox add-ons website. Linux and Mac support is in beta testing so you’ll need to install the development version at the bottom of this page.

In response to many requests I have begun accepting donations so if you would like to express your appreciation for KeeFox in this way you can now do so via a contribution on the addons.mozilla.org site .

Version 1.0 has been subject to some “last minute” polishing for a number of months now and online help resources have been greatly improved during that time. While the KeeFox features have not been improved a huge amount in the past 6 months, I have been hard at work on version 1.1 which will be available for beta testing soon. Version 1.1 will bring improved support for users with multiple databases and a few bug fixes.

I would like to know what you think of KeeFox and what improvements you would like to see before we reach version 2.0 so please take a moment to fill in the user survey

The launch of version 1.0 coincides with a revamped KeeFox website which I think makes it easier to navigate and more pleasing on the eye; again, feedback is welcome!

I’m extremely grateful to everyone that has helped KeeFox reach this milestone; while I can’t list everyone here there are few that warrant particular attention.

Ben Roberts: KeeFox logo design and early alpha testing
Ken Bass: Development work to support Linux and Mac (currently under beta testing in version 1.1)
The team of translators on babelzilla.org: Lakrits, Ramesses, yfdyh000, meilon, softcat, Siggi0904, maniosus and degit

PS: The official version number is 1.0.2 for administrative reasons

1 May 2012 19:28:20 | Tags: News, keefox, release, Releases

KeeFox 0.9.5 and Linux/Mac support

Version 0.9.5 has just been submitted to Mozilla for review so will hopefully be winging its way to you through the usual update channel within a week.

Changes this time:

  • HTTP Auth login boxes now correctly state when no matching passwords were found
  • New domain matching rules prevent IP addresses from matching incorrectly
  • Improvements to message/tip display (easier to prevent the same message appearing again once you’ve seen it)
  • Miscellaneous changes to meet recent Firefox add-on best practice guidelines
  • Dutch translation added

Also note that (thanks to krbvroc1) you can now run KeeFox on Linux and Mac systems but we’ve not had enough beta testing feedback to enable support outside of the development channel. In fact to my knowledge, it has not ever been installed on a Mac, although in theory it “should work”.

Please install version 0.9.5b if you want to help us test KeeFox on Linux or Mac systems. There are no significant changes between version 0.9.5b and 0.9.5 so you’re not missing out by moving to the development channel.

More details are available in the release notes for 0.9.5b (look a little bit down the versions page)

0.9.6b will be pushed to the development channel in a couple of weeks so if there are any important changes that need to be made to improve Linux and Mac support it would be great to hear about them soon.

14 March 2012 22:07:18 | Tags: News, development, keefox, release, Releases, linux, mac, mono

KeeFox 0.9.4 released

Version 0.9.4 has been added to the Mozilla add-ons site so you should receive an automatic update in due course.

This version works with KeePass 2.18. It also adds a new message display service aimed primarily at new users (but which I hope to extend to delivery of important security notifications in the future). 

There are a number of other changes too: fixing some bugs, improving the translations for some languages and making some fairly invisible improvements.

Full list of changes:

  • Works with KeePass 2.18 (and installs it by default for new users)
  • .NET installer is now .NET 4 (Client Profile)
  • Firefox addon messaging service (FAMS) added to help new users with handy tips, other important messages and potentially future security notifications - see https://sourceforge.net/apps/trac/keefox/wiki/Manual/Technical%20architecture/FAMS for more details
  • Fixed bug that caused old style HTTP realm data, priority selection and alternative URL data to be lost under some circumstances during migration to the current advanced string formatting scheme
  • Users of FF4 and above can now setup KeeFox automatically even if they have non-latin characters in their profile path
  • Fixes #116 (bad regexp in any entry breaks keefox) - KeeFox no longer breaks and also notifies the user of the problematic regular expression
  • Locales updated
  • .NET framework detection considered successful if 2 or 4 installed (also should work on x64 FF builds now)
  • New version of Jayrock libraries added; modified to work in .NET 4 Client Profile
  • Projects/solution source code upgraded to run on VS2010
  • other minor changes
4 February 2012 13:30:35 | Tags: News, keefox, release, Releases
Next Page »