Which password manager to use?
-
There’s a lot of arguments for one solution or the other based on security or privacy, but let me present a different scenario:
Imagine you’re in a natural disaster. Your home based self hosted server is down because of a general rolling network outage or just irrecoverably destroyed. Your offsite on the other side of the county is in a similar state. Can your cloud hosted backup be accessed at generic, public computer in a shelter or public building?
Bitwarden can. It has specific instructions for doing so as safely as possible.
-
Selfhosted VaultWarden with Bitwarden browser apps and KeyGuard on my phone, which I like better than the Bitwarden app.
-
I used to be a rabid advocate of self hosting password managers, and was switching between Vaultwarden and KeepassXC every few months. But Proton offered a lifetime subscription to Proton Pass with unlimited Simple login aliases, and I bought it now use this exclusively.
-
Big fan of Keeppass + syncing program of choice. It has served me well for years.
-
-
They are closed source, but their white papers are very good
-
Correct me if I'm wrong: if something happens to your vaultwarden instance, aren't you at risk of losing everything? I do use bitwarden, but I could never self host it. Too important. ID rather use keepass with syncthing so that more than one of my devices have my passwords
-
This is the way.
-
Most here won’t like this answer. 1Password.
I’ve used it for years and it just works well for me. Finally convinced my spouse to also use it a couple of years ago. Switching is not an option since it took years of convincing to make that happen.
-
Keepersecurity is supposedly zero trust and was recommended by cybersec professionals at work but havent seen it here.
-
1Password is the only one I found that I can share with the family, syncs changes practically instantly, and actually detects login fields on every platform I use it on (Android, Windows, Linux).
-
I also self host Vault Warden.
I have my vault automatically exported to Google Drive as an encrypted copy. So worst case I can download from there, and import it to a new password manager or another Bitwarden instance if my server borks.
