Which password manager to use?
-
I just don't want any unauthorized persons anywhere near my vaults in general. I also see my vault as a critical service that requires high availability, and I know enough about system administration to know that my network and I are not qualified to provide that.
-
Got a free family subscription through my work. Before that I was paying for it.
1Password is just great. Wonderful Linux support (desktop app, cli client, identity agent for SSH).
The major update to version 8 was rolled out to Linux first, actually.
One of the few pieces of software where you feel that the developers care about their product.
-
Actually keepassdx, and sounding syncthing
-
I like to use SyncThing for my keepass vault. Imo it's about as simple and elegant as it can get without involving third party services.
-
-
Ignoring the security aspect of it Bitwarden is responsible for hosting a fault tolerant, highly available web app.
They have redundant networking, redundant servers, load balancers, redundant databases.
While you could host this yourself to these tolerances it's work and it's not free.
If you're using your password manager to the fullest you have a different password for every resource out there. It's more than a minor inconvenience if you get locked out of your passwords.
Their service is dirt cheap and it's absolutely worth every penny.
-
Vaultwarden is perfect imo
-
-
I use KeepassXC on desktop, KeepassDX on my phone and keep it all synced with Syncthing. Works great
-
Is VW audited in the same way that BW is?
-
I hear good thing about Vaultwarden, but the web UI is horrible.
Vaultwarden's web UI is very confusing, especially the search feature. And it's difficult to move items between folders/collection. The desktop app is available as DEB/RPM package but without auto-update, which isn't great.
Fon now I'm sticking to KeepassXC because the app my distribution has a package for it and allows auto-update. The UI works well, and it has decent browser integration.
-
The data stored on Bitwarden's servers is completely encrypted though, which means a breach will not yield useful data, unlike the plain text storage for LastPass.
