Not exceptionally paranoid yet - but it feels like I'm working on it!
BTW, I've considered that but I do have some trepidation about Dropbox - they really do seem more geared toward sharing and not so much on privacy/security. Also. I'd have to go to copy/paste I think; Keepass doesn’t do form-filling well. At least it didn't the last time I tried it. Maybe they've gotten better.
One more thing I need to do - get all the logins I have added recently to LP and get them into Keepass. I initially made sure they were identical but adding stuff on the fly to LP was easy; replicating that same info to Keepass not as easy. I know there's stuff that never made it into KP. Whatever I do I think it will be a lot of manual entry.
It's a hassle. But I eventually bit the bullet and did it. More out of simple cussedness than necessity perhaps, but I admit I have (possibly unjustified) trust issues with online password stores.
Form fill is a buggy experience with KeyPass to be sure. I've mostly given up on using it, but that's the price I pay for refusing to deal with something like LastPass. So be it.
Dropbox doesn't share if you don't tell it to. They're even dropping the default supplied Public folder for a much more restrictive and formal file sharing process for all new accounts.
FWIW, I only sync my heavily encrypted pwl-database to Dropbox. I run it off a USB key in portable mode for day to day use. This is my security key so it also uses Truecrypt to keep everything well hid should I ever lose it. I debated installing some sort of autodestruct mechanism on it but decided it was more effort than it was worth since I commit any of my really
important passwords (bank account, Amex, etc.) to memory anyway. Not hard if you follow this suggestion courtesy of "Randall" over at xkcd
- and which has been previously posted in different threads here at DoCo:LastPass Finally Showing Its Revenue Plans? Credit Monitoring? Bah...