The most secure password storage is offline. A criminal on the other side of the world can’t steal your passwords if they’re not on the Internet to be stolen in the first place. Until recently, storing your passwords offline has meant writing them in a notebook. One of my clients keeps all of her business passwords on 3x5 cards, in a locked desk drawer, in a building with a burglar alarm. Nothing wrong with that; a securely managed written list is absolutely acceptable.
It’s acceptable, but not perfect. For example, a written list can be lost or stolen. If it’s lost, you probably don’t have a backup copy, so every password has to be recovered manually with the “forgot my password” option. And if the list is stolen, well, your written password list probably isn’t encrypted, so whoever took it can read it.
The Stash Password Manager addresses these problems. It’s offline. It’s encrypted. You can make a backup. And — bonus — you can take it with you, because it’s tiny and portable.
Before I get into the details of the review, it’s time for full disclosure with some background information. In December of 2019, a friend asked me what I thought of the Stash card. At that time I had never seen a Stash card. I did some online research and then wrote my original review. (It contained information that is now outdated, so I deleted it). I tried to give an impartial report of the pros and cons, so my friend could decide if the Stash card was something she might want to try.