Martin Kaspar posted a topic in General chit chatWhere do you store the KeePass-DB? Where would you recommend me to store a Keepass-file? Usually I have my personal documents in my cloud account - but i am not sure if this is safe. Would it be safe to use the cloud for this file? Can i secure it even further, by adding another (extra) layer of security by encrypting the file. General question; How safe is this? What risks do I need to know about? what can i do with the KeePass password file, there are several arguments to decide where to store it. In my humble opinion, if the passwords are really, really important to someone, one should make the decision based on: - the risk of the file being hacked - what can we do if we consider to get hacked - the risk of losing the file because of having a bad hdd - what do you do if you face disk errors. And sure thing -. there are more things to think - what if someone may compromise the file - is it preferable that the DB file not get in the wild, - there may be more and other risks - which one do you take into consideration"? - what if my cloud storage account is getting compromised then having the credentials recovered by either brute force or some other attack vector. What if someone may compromise the file? - Options; can i secure it even further, by adding another layer of security by encrypting the file i am going to store in cloud storage online. - regarding the master password: master password provides pretty good security as long as i choose a difficult to brute force password (long and truly random), - on the other handside - a masterpassword still can't compete with an actual long encryption key. - we can increase the resiliency of the KeePass database to brute force by increasing the number of PBKDF2 iterations - we can do this in KeePass under File > Database settings > Security: Personally, I use around 10,000,000 rounds (2 s delay). well -- as mentioned above; I use the KeePass-cloud combination. The password database is encrypted using a key derived from a strong master password. Even if somebody acquires the encrypted password database through the cloud account, a strong enough master password renders brute-force attacks infeasible. what can i do with the KeePass password file, which of the arguments do you take into consideration - to decide where to store it.