How do I use my existing KeePass database on my new iPad without iTunes on a computer?

I’m a Linux user who bought an iPad. I’m also an Infosec pro who uses the KeePassX password manager. All my passwords are too long to type on the iPad – so I want to use my password manager on iPad. I installed MiniKeePass on the iPad – and with some difficulty (had to type in the password for one service), moved the database (.kdbx) to iPad. I used the export/share functionality to make the kdbx to make it available to MiniKeePass app.

I’m stuck here. I need to move my Key File too.

I can’t find any way to get the Key File into MiniKeePass. The standard export/share functions don’t seem to work for plain text files without extensions.

All the advice I got so far is “Use iTunes”. I’m a Linux user; no Windows / Mac or even Wine.

Any suggestions?

How is PasswordSafe different from KeePass/OtpKeyProv?

Over at Does adding two-factor authentication by OTP really make KeePass more secure the top answer unmistakably states that KeePass is not made more secure by using an OTP. I told a friend I was using PasswordSafe instead of KeePass but then he asked how was that any different and I realized that I trusted the PasswordSafe+YubiKey combination to be secure mostly because they have mutual advertising.

The answers to the SE question mentioned above explain why KeePass is not made more secure by 2-factor-authentication (2FA). Can somebody give the same explanation (whether positive or negative) for PasswordSafe?

Attacking KeePass

I recently saw this new attack on KeePass (see here and the source code). I don’t know how to use this attack (I’m a newbie to these things), so I want to know:

  1. How can this attack be used?
  2. What does this mean for personal computer users?

I understand that one question might be answered by an answer to the other, but any help understanding this would be appreciated.

Keepass2 vs KeepassXC – KeePass-Http connector – Mono in Linux

please forgive beginner question.
I have been using Xubuntu for several years now; this question is regarding password managers under Linux/Ubuntu.

I have been using Keepass2 which is just such an amazing password manager; HOWEVER
I have the following 2 questions re this:

  1. I am using KeePass-Http connector (just such a useful and quick extension to enter logins/passwords!) and there are some security concerns re this:

from the website of KeepassXC:

A note about KeePassHTTP
KeePassHTTP is not a highly secure protocol and has certain flaws which allow an attacker to decrypt your passwords if they manage to intercept communication between a KeePassHTTP server and KeePassHTTP-Connector over a network connection (see and )KeePassXC therefore strictly limits communication between itself and the browser plugin to your local computer. As long as your computer is not compromised, your passwords are fairly safe that way, but use it at your own risk!
As of KeePassXC 2.3, we deprecated KeePassHTTP in favor of KeePassXC-Browser.

However, I have now tried using KeepassXC which has changed beyond recognition in the past few months. Superb!
It doesn’t need Mono (if I understand correctly) and it uses KeePassXC-Browser (rather than KeepassHTTP)

Would anyone have any comments re the security of KeePassXC-Browser extension?

2. in order to run Keepass2 (esp if also using the Keepass-Http connector) one needs Mono.
Some would say Mono is a security risk.

Is this correct? – I would have thought that I would be unlikely to ‘accidentally’ execute malware as root under Linux?

Sorry for mix of questions… basically I am asking if, under Linux, KeepassXC would probably be safer to use compared to Keepass2?