I have a question regarding the KeePass password management program. According to the developers, the password database files are completely safe and free of any back-end access. Meaning that, if you lose your master password (or whatever method you uise to access) you're totally screwed. There is supposedly no way in but the main way using the master password. I have no reason not to believe this, but would like to confirm it with any experienced KeePass users.
Also, where should I store my databases for sharing purposes. I want to set it up so that a few members of my team can access our database, download (and upload) passwords, sync if desired, from any location. If I use the FTP access method, I can keep the database out of reach of the public. But, if someone is sniffing out my network (or there's a worm hanging out for some reason sniffing out traffic) and they get my FTP access info, I'm boned.
If I make it available via HTTP, I can at least password-protect the files, even though they would be accessable (or at least viewable) to the public...should they happen upon the location on the web where the file(s) are.
What I am looking for is any advice on the most secure method for storing KeePass databases (or any other sensitive files for that matter) that still allows sharing within my select team members.
Any help would be greatly appreciated.