Import passwords into Firefox?

Deadjasper

2[H]4U
Joined
Oct 28, 2001
Messages
2,568
Might be pissing in the wind here but thought I'd consult the experts before giving up.

Just upgraded to the latest version of Mint Cinnamon. I was using a firefox addon call "Password Exporter" to manage my passwords. It exports the password list to an XML file. Apprently the newest version of FF isn't compatible with XML files. Does anyone of an easy way to get around this? I have over 400 passwords and would hate to have to type them all back in one by one. :(
 
First thought would to bring it into Excel or other spreadsheet program and save back out as csv. If you need to massage the formatting at all you can do it in Excel easy enough.

Second thought, was is there not the same password add-on in Firefox to re-import? Honestly don't know as I never used that one.

Personally I'm currently using Bitwarden for passwords since Lastpass changed their free version recently. Works fine on Linux/Android/Ipad for me.
 
Last edited:
First thought would to bring it into Excel or other spreadsheet program and save back out as csv. If you need to massage the formatting at all you can do it in Excel easy enough.

Second thought, was is there not the same password add-on in Firefox to re-import? Honestly don't know as I never used that one.

Personally I'm currently using Bitwarden for passwords since Lastpass changed their free version recently. Works fine on Linux/Android/Ipad for me.

Thank you sir. Didn't think of using Excel to change the format. Off to do that now.
 
If you install the old version of Firefox that you had, it could have saved that addons data in Firefox's sync storage. Chance of it. Once you get that out, might be a way to get it into Firefox's Lockbox. I use KeePass on OneDrive and it works well, no reliance on any browser addons.. plenty of good desktop and mobile apps to interface with it. Modifying your file should work out well though since everything is right there.

If you don't want Lockbox, BitWarden always looked good to me. I like the flexibility of KeePass though since you can store any amount of images and such if you need to.
 
I use the Firefox account to keep my nonimportant passwords I store in Firefox password manager. It syncs them automatically to every Firefox I'm logged in. Important passwords are either 2 factor or saved somewhere else.
 
I've never had a Firefox account. Don't really like the idea of storing my passwords on somebody else's server. I've been opening the XML file when I need a password. Sooner or later I'll have them all back in. I stayed with FF 52.9 ESR for as long as I could. FF pissed me off when they decided to kill all the 3rd party addons. I'm still looking for a cookie auto delete that really works. Self-Destructing Cookies actually did. All I've tried so far seem to have "sponsored cookies" that don't delete. They can take this concept and shove it where the sun don't shine.
 
The closest thing to that other than having a risky/error prone setup like you're running into, is the KeePass database on Dropbox or OneDrive. That grants you a standard format, ~30 days of backup through the cloud provider, and as much security as you can while still gaining redundancy. To modify your XML to get into an importable format, you should enter a password or two into Firefox, export it, and use its format to have your XML data to match whatever it produced. Firefox accounts are great, especially for sending tabs between mobile and desktop, I sync everything with it except passwords, those are local only. If I were untrusting and were to consider trusting anyone with my passwords it would probably be Mozilla's Lockbox. If you have your own server, you can also self-host an instance of Bitwarden. Just some options.
 
I'll add another vote for Bitwarden. It's free, works very well, and has simple browser plug-ins.
 
The closest thing to that other than having a risky/error prone setup like you're running into, is the KeePass database on Dropbox or OneDrive. That grants you a standard format, ~30 days of backup through the cloud provider, and as much security as you can while still gaining redundancy. To modify your XML to get into an importable format, you should enter a password or two into Firefox, export it, and use its format to have your XML data to match whatever it produced. Firefox accounts are great, especially for sending tabs between mobile and desktop, I sync everything with it except passwords, those are local only. If I were untrusting and were to consider trusting anyone with my passwords it would probably be Mozilla's Lockbox. If you have your own server, you can also self-host an instance of Bitwarden. Just some options.
KeePass on onedrive is still your passwords on someone elses server.
 
KeePass on onedrive is still your passwords on someone elses server.

I also believe that any password program is going to give someone else access to your passwords. All software calls home to upload your info to it's maker.
 
I also believe that any password program is going to give someone else access to your passwords. All software calls home to upload your info to it's maker.
I think there are some managers that keep a local database strictly. We have our own native system for storing device information, such as login credentials. When you host the database and code your own code, you can be pretty sure outsiders get no access to it, short of a major security breach. Even then data is encrypted even if they get access to the database.
 
KeePass on onedrive is still your passwords on someone elses server.
It should be pretty clear that I fully realize that, and didn't say otherwise. My comment there, in context was that it was the closest thing to what he wanted but removing such an error-prone setup. I don't care if my passwords are on someone else's server. The risk involved, someone or someone at Microsoft getting into my kbdx file and stealing my Gmail password (also protected by Microsoft Authenticator so they'd need to get into that too), is low enough that I feel I'm reaching to beyond good-enough security for a working stiff. I was giving him options, and letting him know how I do it since the current way hasn't panned out so well.

I also believe that any password program is going to give someone else access to your passwords. All software calls home to upload your info to it's maker.
Your call but I trust open source software in this regard since it can be verified. I haven't verified, but my critical accounts are covered by 2FA anyway. Even my HardOCP forum account uses a form of 2FA. If my security isn't good enough, I challenge anyone here to hack into my accounts. :) First you got to find me. Good luck to whoever feels how I do things is not good enough or too weak.
 
I think there are some managers that keep a local database strictly. We have our own native system for storing device information, such as login credentials. When you host the database and code your own code, you can be pretty sure outsiders get no access to it, short of a major security breach. Even then data is encrypted even if they get access to the database.

Should Just self-host a Bitwarden instance and be done. :p

I'm actually in the process of bringing up Bitwarden for my family as we speak.
 
Back
Top