I use KeePass2 on Windows and KeePassX on Linux. I understand the arguments between the two on database compatibility and cross-platform performance. What I'm curious about is whether either one is more or less secure.
In the following examples I'm running KeePass2 and KeePassX downloaded straight from the Ubuntu repositories.
I generated a password using KeePassX, and pasted it into a fake entry in both programs. Notice the different evaluations in password security.
KeePassX:
KeePass2:
Next I made a password myself by quickly mashing some keyboard keys. As before, KeePassX returns a higher count than KeePass2 (like it almost always does).
KeePassX:
KeePass2:
Which is correct? Are the two programs using different algorithms to determine security? Which is more trustworthy?
Also, do the two programs use different encryption methods for their databases? Is either more secure?
