I wanted to ask if it was possible, in any way, to have the convenience of just having to sync a single passwords file, while also having the security of putting more sensitive login credentials behind a different or additional passwords?
On my computer, I usually have KeePassXC unlocked for the entirety of being logged in. So if my computer were to be compromised, the attacker would not only get access to relatively unimportant accounts, like this Lemmy account, but also highly important ones, like my email or bank login credentials. So I’d like to split my passwords file into multiple “files”, where the unimportant logins are permanently unlocked for convenience, while the more sensitive login credentials remain encrypted until I actually need them.
However, I also am fucking lazy and I know that I won’t be able to keep up with the hassle of keeping multiple passwords files synced. So I wanted to ask if it is possible to keep the convenience of having just a single file that you need to sync, while also making use of the security that splitting up the passwords file brings.
Currently I use KeePassXC on my desktop and KeePass2Android on my phone, but I’d be willing to switch to other software, if the benefits are there.
Most methods for syncing a file also let you sync a whole directory of files (for example syncthing).
So if your main issue is keeping them on sync across devices, keep different kdbx files in the same directory and sync that.
However, I’ve found that switching between databases is not very convenient with most keepass clients. So I tend to only keep separate files when the context is really different and I won’t need to be switching back and forth (eg. personal vs work).