Frequently
Asked Questions
Q: How many
passwords can I keep in a single vault file?
A: There
is no specified limit. The more passwords a vault file contains
the longer it takes to open. As an example, a vault file containing
100 passwords opens in 3 seconds on a machine with a 1 GHz
processor.
Q: Can I
use spaces in the User Name and Password when making a new
vault file?
A: Yes,
but you must use the same exact number of spaces to open the
vault file again. For the password, we recommend using a phrase
or make up a random word, but one which you can remember.
Q: Can I
use the same password for more than one vault file?
A: Yes,
if the user name is different in any way, then it's a different
vault file. You can also use the same user name with different
passwords. The auto manager takes care of the details.
Q: Can I
have more than one vault file open at a time?
A: Yes,
you can open as many vault files as your system has resources
for. If you have more than one vault file open and in the
tray, you can tell which user name is for a given icon by
pausing the mouse over the icon.
Q: What's
the best way to organize my passwords in a vault file.
A: When
a vault file is open, it's sorted by the Description field,
so the best way to organize a vault file is to use key words
in the Description field to group like items together. For
example, start the description of all your e-mail passwords
with the word "Mail", and all your banking or retirement
accounts with a word like "Financial."
Q: How do
I know the name and location of my vault file?
A:
When you first create a vault file you'll be shown it's name
and location. The location is always the same folder where
the "acerose.exe" porgram file is located. Once
a vault file is open you can see its name and location by
selecting File from the
main menu and then selecting Vault
file information.
Q: Can I
rename vault files?
A: No. The
auto manager calculates the file name based on the user name
and password using the versatile SHA-1. The auto manager has
been tested to over 120 million random combinations of user
names and passwords without finding a file name clash. In
the rare possibility that there is a clash, you'll be given
a message to select a different user name or password. With
SHA-1, there is no means of working backwards from file names
to discover user names or passwords.
Q: What's
the advantage of closing or minimizing to the tray?
A: Typically,
we select to view just the Description and Note fields, so
that if a guest is watching they don't see our passwords or
other detailed information. For enhanced security we select
to both close and minimize to the tray and require a password
to restore. This lets us quickly protect our passwords by
clicking the close or minimize icons on the upper right of
the window. The tray restore password can be something short,
as the only risk is that someone may try to guess it while
we are temporally away from the computer. The short password
makes it easy to restore the vault file when we need a password.
Common
Problems
P: Unable
to export password information.
A: This
is usually caused by the output file being set to read-only.
Either export to a different file or use Windows Explorer
to set the file's properties to allow writing to the file
(uncheck the read only box). Also, if you have just added
new records, exit Acerose and then reopen the vault file before
trying to export.
P: Unable
to launch web pages.
A: You must
have a default browser set up to launch web pages from within
Acerose. The best way to test this is to open Windows®
Explorer or My Computer, locate some *.htm or *.html
file (or make one) and double click on it. If you have a default
browser, the file will open in your default browser.
To select Windows® Internet Explorer (IE)
as the default browser, open the Tools menu and click
on Internet Options... Then click the Programs tab
and check the box near the bottom of the dialog that says
something about Internet Explorer should check to see whether
it is the default browser and then click OK. Finally
exit IE and start it again.
If the default browser test still doesn't work,
then you likely have installed some other browser and it's
keeping IE from garbing the default status, yet it's not selected
as the default browser either. See if you can get it set up
to either be the default browser or allow IE to be the default
browser.
Another possibility is that you may have installed
some third party browser that you didn't like and then uninstalled
it. Sometimes uninstalls leave orphaned settings in the Registry
that prevent IE from being the default browser. In that case
you may need to manually remove those settings, the details
of which may depend on what version of windows you are running
and what third party browser you tried. As a last resort,
you may be able to reinstall that third party browser and
use it as the default browser. You may even be able to select
IE as the default browser once the third party browser is
installed.
P: Unable to open
another vault file from within an open password vault.
A: Make
sure the User Name and Password fields are correct. Enter
the full path to the Acerose.exe file in the URL field such
as "c:\acerose\acerose.exe". The path must not
contain any spaces (spaces are not allowed in URLs). The
vault file you want to open must be in the same location as
acerose.exe. Select Script #3 in the Launch Using box. Give
it a try.
If you still can't open the vault, click Options
on the main menu and select Launch setup options... In the
Launch Setup Options dialog, select Script #3 in the Enter
or Edit Launch Script box. The script will display in the
Launch Script box. That script should be as follows:
Background
Information
Just like you, we have a number of important
assets, both on-line and off, that are password protected.
For the security of those assets we wanted to use strong passwords
and a different password for each asset. The solution is to
use a password management program, but which one? In researching
this, we found that the market is full of such programs, but
to our surprise, we found that many are fundamentally flawed
in one of two ways. Either they use a storage
protocol known to be subject to corruption or they incorporate
a password generator for which serious
attacks are known to exist.
Being software developers, we set out to create
a password management program that would avoid both these
fundamental flaws. The rock solid reliable storage of password
information required a number of features including a top
notch streaming cipher. This was solved by using the SHA-1
(Secure Hash Algorithm 1), which is at the heart of all federally
approved digital signature protocols. In it's role as a streaming
cipher, SHA-1 generates chaff (pseudo-random characters),
which is mixed with the plain text to produce the cipher text.
That's where the name Acerose comes from. One of the definitions
of acerose is "having the nature of chaff; chaffy."
It's a natural fit for password management programs
to include a password generator, but many such generators
produce only the appearance of security. We wanted a true
cryptographic quality password generator for our program,
and once again the SHA-1 was the solution.
With a bit of checking we found that typical
users have less than 50 password protected assets. With this
relative small number of items a hierarchical organization
is unnecessary. The grouping of like items is easily accomplished
simply by starting the description with key words, such as
Financial, News group, Boards, Mail, etc. Of course, you can
also sort on the date the record was created or edited, or
by URL, User name, or Note. This makes finding the item you
want easy and quick.
