Solved.
Kudos0

Backup to Bitwarden

Posted: 30-Jan-2022 | 12:44PM · 8 Replies ·

Dear members,

Have come across a few recent posts where Norton Password Manager (NPW) can't export .csv or .dat files for backups (bummer). Unlike most, I've never had a problem with NPM not working, etc, hence I'm happy to keep using it, just need a backup. Although, since I can't create backups any-more with it, I thought it would be a good idea to have all my passwords backed elsewhere like into Bitwarden (BW). As exporting to iOS Keychain is impossible, how can I do this with BW?

Previous pics/video don't work, I just get a tab opening in my browser when I try to export data from Norton web extension with all website names and passwords. Copying and pasting that info into BW doesn't work. Say's doesn't recognise file format.

If you can advise how I can accomplish this, I'd be grateful.

Also, if you can advise if I can import with json file back into NPM in the future. If NPM doesn't allow backups as .dat and .csv anymore, at least I can get BW to do it.

PS: On Windows 11, so anything regarding Internet Explorer local vault feature is impossible for me. Not used local vault in years.

Labels: Logins, Local Vault, Norton Safe Web, Norton Password Manager, Online Vault

Replies

Accepted Solution
Kudos1 Stats

Re: Backup to Bitwarden

Posted: 30-Jan-2022 | 1:12PM · Edited: 30-Jan-2022 | 1:33PM · Permalink

Export vault from Norton Password Manager browser extension is text dump. 
I can copy/paste text to Notepad.  I can change file type from .txt to .csv   

from Norton Password Manager extension:
Export vault -> copy/paste text to -> Notepad -> name & save text file -> rename file type from .txt to .csv

LastPass, Enpass and KeyPass have generic csv Importer. 

Maybe, Bitwarden has generic csv Importer.

Kudos0

Re: Backup to Bitwarden

Posted: 30-Jan-2022 | 1:28PM · Edited: 30-Jan-2022 | 1:30PM · Permalink

https://keepass.info/help/base/importexport.html

https://keepass.info/help/kb/imp_csv.html

Kudos1 Stats

Re: Backup to Bitwarden

Posted: 30-Jan-2022 | 1:56PM · Permalink

It has an option for PM's I've never heard of before, but not Norton? Wow.

Anyway, chose "Universal Password Manager (csv)" and that works close enough.

End result is mostly displayed with username (which is email addresses mostly) and that doesn't help what website it belongs to, where I would prefer website names.

Norton would display unedited names for John Lewis as: accountjohnlewis.com, BW lists my email address there instead. Not always obvious which website the password and user names belong to. Maybe other PM's will behave similarly with this kind of export. As this is just a backup and not replacement to NPM, still feel disappointed with the look, would have still liked a better layout of logins by BW.

I'll look into the others you suggested when I have more free time.

Thank you so much for the prompt response and help. Really appreciated. Will mark as solution.

Kudos1 Stats

Re: Backup to Bitwarden

Posted: 30-Jan-2022 | 2:58PM · Edited: 30-Jan-2022 | 3:11PM · Permalink

TheScoob:

Anyway, chose "Universal Password Manager (csv)" and that works close enough.

End result is mostly displayed with username (which is email addresses mostly) and that doesn't help what website it belongs to, where I would prefer website names.

Norton would display unedited names for John Lewis as: accountjohnlewis.com, BW lists my email address there instead. Not always obvious which website the password and user names belong to. Maybe other PM's will behave similarly with this kind of export. As this is just a backup and not replacement to NPM, still feel disappointed with the look, would have still liked a better layout of logins by BW.

I'll look into the others you suggested when I have more free time.

Thank you so much for the prompt response and help. Really appreciated. Will mark as solution.

@TheScoob
Thank you for testing and "works close enough". 
Me feel  Thanks!

btw ~ I like Enpass text export.   I like alphabetical list.  Enpass text export is easy reading.  Great for paper backup.  I run KeePass as daily rider.  I maintain Enpass as backup.  KeePass does Export XML.  Enpass does KeePass -> Import XML.   My preference is off-line password manager.  

End result is mostly displayed with username (which is email addresses mostly) and that doesn't help what website it belongs to, where I would prefer website names.

Maybe, this will offer some info.
https://community.norton.com/en/forums/solved-trouble-importing-csv-file-not-all-csv-files-are-same 

Kudos0

Re: Backup to Bitwarden

Posted: 31-Jan-2022 | 6:39AM · Permalink

Thank you, I was after an open-source project for my needs and it seems Enpass and BW fits the bill, too. If someone of your vast experience in the field can trust it, then I'm sure I can.
Looked into KeePass (another good open-source), but it seems to me you need a rocket science degree to run that one easily.
Seems you have one. Ha.
I like the fact Keepass is mostly based offline. My nerdy friend prefers that one.

When I have more time, I'll try Keepass, BW and Enpass and settle for one of these as my backups.
Otherwise, I've been with Norton for over a decade and don't fancy replacing NPM for my main use unless there was an emergency of some sort.

Fast and efficient community service and responses here, too, so again, thank you so much for that.

All the best.

Kudos0

Re: Backup to Bitwarden

Posted: 31-Jan-2022 | 7:11AM · Edited: 31-Jan-2022 | 7:12AM · Permalink

TheScoob:

I was after an open-source project for my needs and it seems Enpass and BW fits the bill, too. 
Looked into KeePass (another good open-source), but it seems to me you need a rocket science degree to run that one easily.
I like the fact Keepass is mostly based offline. My nerdy friend prefers that one.

Just for clarification: 

  • Enpass is not open source. 
  • I run KeePass as daily rider and maintain Enpass as backup.  
  • I'm not Bitwarden firsthand familiar. 
  • KeePass cannot prevent password theft and, as Dominik Reichl, the administrator of KeePass, states, "Neither KeePass nor any other password manager can magically run securely in a spyware-infected, insecure environment." #

Regards w Respect 

Kudos0

Re: Backup to Bitwarden

Posted: 31-Jan-2022 | 8:09AM · Permalink

I was certain I read on "cybernews" that it was open-source.
Checked on their website and it said:

Your data is fully encrypted with 256-bit AES with 100,000 rounds of PBKDF2-HMAC-SHA512 using the open-source encryption engine SQLCipher.

Ah, so it's just their "encryption engine" that is open-source and not the whole program, it seems. Again, thanks for that.
Will certainly look into it more when I have time off work. No rush at the moment.

I understand nothing is really safe, but if your rig is not a "spyware-infected, insecure environment", these PM's content can't be hacked without your master password, though, correct?

Thanks in advance and for everything in between.

Kudos0

Re: Backup to Bitwarden

Posted: 31-Jan-2022 | 9:20AM · Edited: 31-Jan-2022 | 9:44AM · Permalink

TheScoob:

I understand nothing is really safe, but if your rig is not a "spyware-infected, insecure environment", these PM's content can't be hacked without your master password, though, correct?

Generally speaking...without your strong master password.  I'll say correct.  

  • When any password manager is locked.  The database (user credentials) is encrypted.   
  • When any password manger is unlocked.  The database (user credentials) is not encrypted.


Norton Password Manager cloud vault encrypts/decrypts user credentials on users machine...encrypt/decrypt occurs locally.   

My understanding: When I access my Norton Password Manager cloud vault.  Decryption occurs locally.  Vault contents - my decrypted credentials are loaded into local memory.  When I can read my credentials in plain text.  My credentials are decrypted held in local memory.  My credentials are encrypted before they leave my machine to be stored online.   When Norton Password Manager is unlocked.  The database (user credentials) is not encrypted.  The database (user credentials) is readable, is vulnerable in a spyware-infected, insecure environment.  Norton does not know my master password.  
 

Norton Password Manager. 
To use Password Manager, you will need to create a vault. The vault requires its own password. We do not store or keep your vault password so if you lose your vault password, we cannot recover it for you. It is your sole responsibility to remember and keep your vault password. You may then use your vault to store your logins, passwords and login URL’s for other sites you access and use.

https://www.nortonlifelock.com/us/en/legal/license-services-agreement/#password

For me...where/how my credentials are used is more important than where/how my credentials are stored.  

If your definition of "hacked" is someone sitting at your machine trying to unlock your vault by brute force.  Trying to guess your vault password.  If you have a strong master password.  IMO It's not realistic that a "hacker" will be able to "hack" your vault. 

If your definition of "hacked" is a hacker trying to breach Norton cloud servers. 
Then, it's a matter of do you trust Norton.   Even if a breach occurs.  Would the hacker be able to brute force open your vault.   IMO It's not realistic that a "hacker" will be able to "hack" your vault.   If you have a strong master password.

IMO your credentials are more at risk when you're using your unlocked credentials than when your credentials are stored locked.  

As you know there are many reports regarding cloud breaches.   There must be an incentive for hackers. 
Regardless of where users locked encrypted credentials are stored.  Users need to practice safe computing.  

I have my KeePass set to lock at 5 minutes.  If I need to enter my master password...again & again.  That's okay by me.   I feel better when KeePass is locked.  When KeePass is unlocked.  I'm on guard.  

Are password managers safe to use in 2022?
https://cybernews.com/best-password-managers/are-password-managers-safe/
Note: cybernews.com is ad supported

Cheers

This thread is closed from further comment. Please visit the forum to start a new thread.