Is it insecure to upload Keepass database to Google Drive, Dropbox or any other file service in the cloud?

I’ve read this answer in Security Stackexchange: https://security.stackexchange.com/a/45337

So, I feel kinda confident if a put a big number of PBKDF2 iterations, like 10.000.000, it should be OK.

My master password is based on diceware, but is not very very long because I need to remember it.

What do you people think about this?

  • FlagonOfMe@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    2
    ·
    edit-2
    1 year ago

    There are two advantages of using the cloud for the database while keeping a key file out of it.

    1. It’s a backup that’s not on any of your own devices.
    2. Your devices sync with little effort. Save the file on one device, and the others have the new database automatically (when using common cloud storage providers that sync)