Reused Password includes password items created by 1Password password generator [Intentional atm]

pawopawo
edited June 2018 in Windows

Whenever I create a new password for a website access this password is stored twice, once in the category Passwords and second in the Logins category for the according website. Both makes sense and is fine for me. However, now since you introduced the new Watchtower I get a reused password warning for basically all my logins, because Watchtower for the a.m. reason finds every password twice. This doesn't make sense, I guess you would agree? pw


1Password Version: 7.1.567
Extension Version: Not Provided
OS Version: W10
Sync Type: Family

Comments

  • Trying to illustrate what I mean:

  • edited June 2018

    Today I clicked into the "Reused Passwords" section of Watchtower and saw, that it is complaining that I was reusing passwords that I had generated with the 1Password browser extension before.
    The reason for this is that when you generate a password in the browser extension, a "Password" item is created and after you successfully login, the extension offers to create a login item with username and password. And now you have two 1Password items using the same password. (I hope that description makes sense)

    I would think that Watchtower should not throw a warning in this case, especially when the two items have the same creation date and time and are for the same website.


    1Password Version: 7.1.567
    Extension Version: Not Provided
    OS Version: Windows 10
    Sync Type: Not Provided

  • MikeTMikeT Agile Samurai

    Team Member
    edited July 2018

    Hi @pawo,

    Thanks for reporting this.

    This is expected but will be improved when 1Password on Windows adds a few improvements; an automatic cleanup function to remove any redundant password items after you create a new Login item with the same website/password combination as the password item. We will also add an extra manual tool to let you clean up old password items that follows the same rule.

    Once these are implemented, there will be less redundant password items to flag Logins as reused and the feature will become more intuitive to use.

  • Thank you @MikeT.
    This makes sense. Looking forward to the cleanup function.
    pw

  • MikeTMikeT Agile Samurai

    Team Member

    You're welcome!

  • MikeTMikeT Agile Samurai

    Team Member

    Hi @Manaburner,

    Thanks for writing in, I've merged your post into this thread about the same issue, please read my posts, the third above this one. We'll be adding cleanup tools that'll help with this.

  • Great, thank you @MikeT

  • MikeTMikeT Agile Samurai

    Team Member

    You're welcome!

  • Hi, any timeframe on this feature? As now I create unique passwords for many sites and I am really bored of deleting the password generator generated passwords :P

  • MikeTMikeT Agile Samurai

    Team Member

    Hi @jimger,

    There is no timeframe on this and it is our policy to not share this information either, it's hard to estimate and rarely ever is it accurate.

  • I understand that this will be solved in future, but I do like to comment on the provided explanation. It states "Watchtower is doing the right thing here", which might be technically correct from a developer standpoint. But I beg you to consider a normal user as well.

    For a normal user this behavior is utterly confusing, and defeats the purpose of watchtower. It obfuscates the actual reused passwords, and makes the feature barely usable. The normal user would immediately question if the other reported issues are also false positives, and will distrust the entire thing. This can't be the user experience you are looking for.

    This is a technical internal application plumbing issue and I suggest that it should not be labeled as normal or intentional.

    Thanks,
    Tom

  • MikeTMikeT Agile Samurai

    Team Member
    edited July 2018

    Hi @tomschenkenberg,

    Thanks for your feedback, I'll try to avoid that labeling in the future. I've updated my post as well.

  • surrealxsurrealx Junior Member

    This is an issue in the Mac version as well. Please fix.

  • GregGreg

    Team Member

    @surrealx: This topic is about 1Password for Windows, so if you have an issue with Mac, it can be a different one, because automatic cleanup is already implemented in 1Password for Mac.

    If you post more details in a new thread in our Mac topic, we will get back to you. Thanks! :+1:

    Cheers,
    Greg

  • surrealxsurrealx Junior Member

    Thanks, Greg. I should have mentioned that I use both versions, and have seen in both. Unfortunately, I went in and hand deleted the overlaps prior to finding this thread. Will post over there as well just in case there is still something that can be looked at.

  • GregGreg

    Team Member

    @surrealx: 1Password 7 for Mac has automatic cleanup tool implemented, so I am surprised to hear you bumped into such issue there. Could you please tell us how do you update your passwords? Thanks!

  • Am I correct to understand that this has not been implemented yet for 1Password 7 for Windows?

  • MikeTMikeT Agile Samurai

    Team Member

    Hi @mpkossen,

    That is correct, it is not yet implemented.

Leave a Comment

BoldItalicStrikethroughOrdered listUnordered list
Emoji
Image
Align leftAlign centerAlign rightToggle HTML viewToggle full pageToggle lights
Drop image/file