LazLock (password manager)

Submit portable freeware that you find here. It helps if you include information like description, extraction instruction, Unicode support, whether it writes to the registry, and so on.
Post Reply
Message
Author
User avatar
Midas
Posts: 6033
Joined: Mon Dec 07, 2009 7:09 am
Location: Sol3

LazLock (password manager)

#1 Post by Midas » Wed May 17, 2017 10:37 am

LazLock (https://www.cpunk-security.com/lazlock2.html) looks interesting, not least because it's multi-platform FOSS (Linux and Windows, ATM), claims portability, and it's always good to have worthy alternatives in the area -- should more established names like KeePass become unavailable all of a sudden... :P
https://www.cpunk-security.com/lazlock2.html wrote:Safely store and manage all credentials associated with your banking, media, email, social networks, education or work accounts. LazLock includes a password generator which allows you to create more secure passwords. A plain text version of your data is never written to disk, all decryption is done in memory. LazLock is portable, no installation is required, so it can be run from a USB drive.
Image


LazLock latest release (currently v2.6) can be downloaded from https://sourceforge.net/projects/lazlock/files/2.6/.

User avatar
webfork
Posts: 10108
Joined: Wed Apr 11, 2007 8:06 pm
Location: US, Texas
Contact:

Re: LazLock (password manager)

#2 Post by webfork » Sat May 20, 2017 2:35 pm

Midas wrote:... looks interesting, not least because it's multi-platform FOSS (Linux and Windows, ATM), claims portability, and it's always good to have worthy alternatives in the area -- should more established names like KeePass become unavailable all of a sudden... :P
Good suggestion. I've been dragging my feet on a password manager for a while now, but my account/password list is getting way out of control so this might become necessary.

User avatar
smaragdus
Posts: 2120
Joined: Sat Jun 22, 2013 3:24 am
Location: Aeaea

Re: LazLock 2.6.0.0

#3 Post by smaragdus » Mon Jun 12, 2017 3:49 pm

I tested LazLock version 2.6- it seems portable and stealth- no settings are saved, just the database file- lazlock.vault in LLdata sub-folder inside program folder.

Links:
Website - https://www.cpunk-security.com/lazlock.html
Website - https://www.cyberfilth.co.uk/personal-s ... d-manager/
Project Page - https://sourceforge.net/projects/lazlock/
Download Page - https://www.cpunk-security.com/download.html
Download Page - https://sourceforge.net/projects/lazlock/files/
History - https://sourceforge.net/p/lazlock/code/ ... ngelog.txt
Help - https://www.cpunk-security.com/lazlock2.html
ReadMe - https://sourceforge.net/p/lazlock/code/ ... Readme.txt
Software Page - http://www.cyberfilth.co.uk/software/
Forum - https://sourceforge.net/p/lazlock/discussion/
About - https://www.cyberfilth.co.uk/about/
Publisher at SourceForge - https://sourceforge.net/u/cyberfilth/profile/
Publisher at GitHub - https://github.com/cyberfilth
Publisher - https://www.cpunk-security.com/
Publisher - https://www.cyberfilth.co.uk/
Twitter - https://twitter.com/CyberFilth
Softpedia - http://www.softpedia.com/get/PORTABLE-S ... Lock.shtml
AlternativeTo - https://alternativeto.net/software/lazlock/
RGdot Review - http://www.rgdot.com/bl/2017/01/19/lazl ... d-manager/

LazLock - the built-in password generator:

Image

Note
It's built with the Free Pascal compiler and the Lazarus IDE.
For me the program icon is cute.
I have contacted the developer, Christopher Hawkins, with several suggestion for the future development of LazLock.

@Midas
...and it's always good to have worthy alternatives in the area -- should more established names like KeePass become unavailable all of a sudden... :P
KeePass becoming unavailable- this is not very probable- an open source program is hard to get obliterated, even TrueCrypt still lives.

User avatar
Midas
Posts: 6033
Joined: Mon Dec 07, 2009 7:09 am
Location: Sol3

Re: LazLock 2.6.0.0

#4 Post by Midas » Wed Jun 14, 2017 11:02 pm

smaragdus wrote:KeePass becoming unavailable- this is not very probable- an open source program is hard to get obliterated, even TrueCrypt still lives.
TrueCrypt is precisely the example I had in mind when I wrote that... :|

User avatar
webfork
Posts: 10108
Joined: Wed Apr 11, 2007 8:06 pm
Location: US, Texas
Contact:

Re: LazLock (password manager)

#5 Post by webfork » Sun Oct 17, 2021 8:53 pm

Old thread update: website moved, update back in February -- https://github.com/cyberfilth/LazLock/r ... ag/2.6.4.2

https://github.com/cyberfilth/LazLock

Softpedia doesn't seem to be following it:
https://www.softpedia.com/get/PORTABLE- ... Lock.shtml

User avatar
Pendrive
Posts: 11
Joined: Mon May 11, 2020 4:37 am

Re: LazLock (password manager)

#6 Post by Pendrive » Thu Oct 21, 2021 3:26 am

"Your data is strongly protected with 128 bit AES encryption."
https://github.com/cyberfilth/LazLock

128-bit encryption sounds very dated and feeble to me.

User avatar
Andrew Lee
Posts: 2726
Joined: Sat Feb 04, 2006 9:19 am
Contact:

Re: LazLock (password manager)

#7 Post by Andrew Lee » Sat Oct 23, 2021 3:16 am

128-bit encryption is still pretty secure for your average computer user.

For example, see: Is 128-bit security still considered strong in 2020, within the context of both ECC Asym & Sym ciphers
I strongly disagree with saying that AES-128 is broken, in any way, shape or form, and likewise ECC with 256-bit keys. Note that even in this answer by @kelaka regarding AES-128, you would need over 34 million years of the entire bitcoin mining power to carry out a computation of 2128. This is far from broken. If quantum computers ever happen at scale, it is very very unclear how long it would have to actually run to achieve 264 quantum computations for AES-128 (but ECC-256 would be in bigger trouble). Bottom line, these are far from broken. (I don't know what Schneier quote you are referring to, but anyway I completely disagree.)
A far greater security risk is the choice of a weak password.

User avatar
Pendrive
Posts: 11
Joined: Mon May 11, 2020 4:37 am

Re: LazLock (password manager)

#8 Post by Pendrive » Mon Oct 25, 2021 4:54 am

A far greater security risk is the choice of a weak password.
I'd have thought that the key-stretching performed by the key-derivation function of any decent pasword-manager would easily mitigate the using of a weak master password.

Post Reply