Which password manager to use?
-
Bitwarden.
My recommendation: Don't use Vaultwarden (self hostable server side of bitwarden. Really easy to run and use).
Why? You're not a security personal, and securing your vault isn't your job. You might do a slight mistake that'll lead to the compromise of your vault.The people at Bitwarden have their work dedicated to securing the vaults and all they do is security. And they'll probably do it better then you.
When it comes to serious matter, I prefer to trust the professionals. -
+1 for Keepass + Syncthing. Free, no cloud, always synced.
-
Good thing the KeepassXC can be used as a 2nd factor authenticator, though it has TOTP only, doesn't offer HOTP.
-
Doesn't the server just hold an encrypted vault? What could go wrong when the server is compromised? Just thinking out loud I don't know the answer
-
Yeah this is me. It's been just perfect for many years now.
-
For native sync, the two good and reputable alternatives are Bitwarden and Proton Pass
-
Yep, that's right. In theory you could share the encrypted DB with the public and not degrade security. (Still don't do that though...)
-
2nding the Bitwarden, absolutely love it. I moved from LastPass years ago and never looked back.
-
Bitwarden is excellent and the paid plan is very reasonable unlike with others.
-
Proton pass if general UX and speed are important to you. Bitwarden if amount of features is important to you
-
Security is also about backups.
3 Replicas
2 Formats
1 Offsite location -
Security is also about backups.
3 Replicas
2 Formats
1 Offsite location -
-
-
I just don't want any unauthorized persons anywhere near my vaults in general. I also see my vault as a critical service that requires high availability, and I know enough about system administration to know that my network and I are not qualified to provide that.
-
Got a free family subscription through my work. Before that I was paying for it.
1Password is just great. Wonderful Linux support (desktop app, cli client, identity agent for SSH).
The major update to version 8 was rolled out to Linux first, actually.
One of the few pieces of software where you feel that the developers care about their product.
-
Actually keepassdx, and sounding syncthing
-
I like to use SyncThing for my keepass vault. Imo it's about as simple and elegant as it can get without involving third party services.
-
Just to play devils advocate. Bitwarden.com is a much more valuable target. My instance is behind a VPN. I think its actually far more likely Bitwarden will have a breach similar to LastPass then I will. But I agree with you mostly.
