background image

Chapter 4c. Using a Password Manager

Some of the most common mistakes people make involve the choice of a weak and easily 

crackable password and/or reusing the same password for multiple accounts. It can be a frustrating 
task for many people to choose different and complex passwords for every online account they use. 
However, without doing that, if one of their accounts gets compromised, the attacker will very 
likely have access to all of their accounts and will discover them shortly. Additionally, As of this 
writing, CNET has reported that both the United States NSA and FBI have been asking service 
providers for anything from individual user passwords to entire password databases. 

No longer can the difficulty of remembering multiple complex passwords be an excuse for 

dangerous behavior.  The simple solution to the problem is a password manager.  In this chapter, 
you will install, and learn how to use, KeePassX, a secure and encrypted offline password generator 
and manager.  

Chapter 4C - A Beginner Friendly Comprehensive Guide to Installing and Using a Safer Anonymous Operating System
background image

1. First, double-click on the “Konsole” icon on your Desktop.

2. At the command prompt, type “sudo apt-get install keepassx” and press “enter.” Type your 

user password and press “enter” when prompted.

NOTE: If you wish to use “copy and paste” throughout the guide for any terminal 
commands in the Whonix Workstation, and you are viewing this guide from within the 
Whonix Workstation, press “LEFT-CTRL+SHIFT+V” to paste what you copied from this 
guide into a terminal session.

When the install process finishes and you have a command prompt, you can close the 
Konsole terminal by typing “exit” and pressing “enter” or clicking on the “x” in the upper 
right corner. 

Chapter 4C - A Beginner Friendly Comprehensive Guide to Installing and Using a Safer Anonymous Operating System
background image

3. For simplicity, now add a shortcut for KeePassX to your desktop. Click on the K start button 

and go to "Applications → Utilities." Right-click on "Cross Platform Password Manager" 
and select "Add to Desktop." A shortcut to "KeePassX" will now be on your desktop.

Chapter 4C - A Beginner Friendly Comprehensive Guide to Installing and Using a Safer Anonymous Operating System
background image

4. After you add the icon to the Desktop, the Start Menu will still be open. Click on "Cross 

Platform Password Manager" to open KeePassX.

Chapter 4C - A Beginner Friendly Comprehensive Guide to Installing and Using a Safer Anonymous Operating System
background image

5. When KeePassX opens, click on "File → New Database" to create your password database.

Chapter 4C - A Beginner Friendly Comprehensive Guide to Installing and Using a Safer Anonymous Operating System
background image

6. You will now be prompted to choose a password for your database. Choose something 

secure in a similar manner to how you chose passwords earlier in this tutorial and click 
"OK." Remember that if you forget this password, you will not be able to access any of 
the passwords you store in the database.

7. When prompted to confirm your password, re-enter what you chose in step 6 and click 

"OK."

Chapter 4C - A Beginner Friendly Comprehensive Guide to Installing and Using a Safer Anonymous Operating System
background image

8. Next, save the database to create your database file. Click on “File → Save Database.”

9. Now, choose a safe location and file name for your password database. When you have 

chosen the location you want, click “Save.” In the example below, the database will end up 
being saved as “mypass.kdb” in the “home” folder. This database will open automatically 
the next time you open KeePassX.

Chapter 4C - A Beginner Friendly Comprehensive Guide to Installing and Using a Safer Anonymous Operating System
background image

10. Create a new account entry in the password manager. Click on “Entries” in the menu bar and 

then click “Add New Entry.”
 

From this point forward, it may be easier to create a dummy account to learn how to use 
KeePassX. Open up Tor Browser and choose a site where you wish to create an account and 
use it where appropriate with these steps.  An easy and quick one to use is “safemail.net.”

Chapter 4C - A Beginner Friendly Comprehensive Guide to Installing and Using a Safer Anonymous Operating System
background image

11. In the window that appears, type the name of the site/service in the field called “Title” and 

the username that you register with the Internet service/web-page in “username.” Then, click 
on “Gen” to go to the password generation screen.

Chapter 4C - A Beginner Friendly Comprehensive Guide to Installing and Using a Safer Anonymous Operating System
background image

12. The “Password Generator” window will now appear and look like the one below.

Click on the boxes next to “Ensure that password contains characters from every group” and 
“Enable entropy collection” so that those options are enabled. When it appears, uncheck the 
box next to “Collect only once per session” so that this option is disabled. These options will 
remain the way you set them for each additional use.
 

Chapter 4C - A Beginner Friendly Comprehensive Guide to Installing and Using a Safer Anonymous Operating System
background image

If your Password Generator now looks exactly like the one below, continue to the next step.

Chapter 4C - A Beginner Friendly Comprehensive Guide to Installing and Using a Safer Anonymous Operating System
background image

13. Next, select the length of your password. Since you do not need to remember your password 

(and may very well not want to ever remember it), you should ideally set the password to the 
maximum length that the service allows. However, to prevent against brute force guessing 
attacks, the default length of 25 above should be sufficient. When you've settled on a 
password length, click on the “Generate” button.

Chapter 4C - A Beginner Friendly Comprehensive Guide to Installing and Using a Safer Anonymous Operating System
background image

14. The “Entropy Collection” window will now appear. Move your mouse around and press 

random keys to generate an entropy pool for the password generator. When it is finished, 
click on the “OK” button.

15. You will now be back at the Password Generator window. If you are curious to see what 

your password looks like, you can click on the eyeball button next to the “New password” 
field. Otherwise, click on “OK” to continue.

Chapter 4C - A Beginner Friendly Comprehensive Guide to Installing and Using a Safer Anonymous Operating System
background image

16. Now you will be back to the “New Entry” screen. Click on the “OK” button to continue.

You will now be returned to the main screen of KeePassX. It is a good practice to save your 
database whenever you add a new account and password to KeePassX.  Thus, click on 
“File → Save Database.”

Chapter 4C - A Beginner Friendly Comprehensive Guide to Installing and Using a Safer Anonymous Operating System
background image

17. Now, whenever you need the password for an account, you can highlight the entry in 

KeePassX and press “LEFT-CTRL C” or right-click on it and select “Copy Password to 
Clipboard.” The password will be automatically cleared from your clipboard in 20 seconds.

If you were creating an account to follow along with these steps, now would be a good time 
to test out using the password on that site. To use the password on any service, simply click 
in the password field that it provides and press “LEFT-CTRL+V” to paste the password in.

18. When you are finished using KeePassX, close it. There's no reason to leave it running the 

whole time.

This concludes the basic instructions on using KeePassX in a secure manner. Use of 

KeePassX as instructed above will result in passwords that are at low risk of being cracked by an 
attacker, while also being individually unique to every service you use. It greatly minimizes the 
fallout one can experience if an account they own is compromised and, thus, is one of the better 
models to use.

Continue to Chapter 4D - Using the IRC and XChat.