Hello everyone, what is your go-to password manager? What would you suggest for friends and family that aren’t very tech savvy?
You must log in or # to comment.
Nobody else here is using Keepass with syncthing for cross-device syncing? I can’t dont know of an easier, more more reliable and secure method.
Same here, KeePassXC via Syncthing, has been working like a charm for many years and I love it.
Yup, KeePassXC is amazing, especially with the add-on in your browser (librewolf I think you need to do something to work). I don’t use my phone much for logging into things, but you can probably sync it on Android (I don’t know how it works on iOS). I love it because you can download icons from websites, and it’s very simple once you get used to it!
Same here, KeePass with SyncThing with a weekly copy of the database-file to a VPS I rent. Besides a password the database requires a key-file, which is copied between the various devices over a USB memory stick.
Why would I keep my passwords with an external company?
But yeah, this is a somewhat tech-savvy solution.
Bitwarden, DON’T self host.
Why not self host?
Because if it’s something that’s vital, you should just pay to have someone else host it. ESPECIALLY if it’s a nominal cost per year.
Thanks for answering. I don’t self host it but am interested. It’s still a company that i entrust to store highly sensitive data with, hence my interest in self hosting. Usually folks promote self hosting, so i was curious about your comment to not. Agree, that’s not something to consider lightly.
Porque no los dos?
BitWarden. All day everyday. Every human
Bitwarden has always worked great for me on android.
KeePassXC (Desktop) and KeePassDX (mobile). Offline, local-only password manager. There’s also a Firefox browser extension for it too.
If you need it to sync between devices, Syncthing gets the job done by syncing the DB file.
I don’t trust any cloud solutions. You’re trusting some random company with your passwords. Data breach is inevitable.
This one for me too! I’ve been very happy.
I try to minimize use of browser extensions, but i have the phone & desktop application. Nextcloud/whatever you run for syncing. I also back up those files through rsync to encrypted volume in a cloud provider (so double encrypted), so that if the worst should happen, I can still access the last version.
It’s worth noting that you can manage OTP through it. When you add to your phone’s OTP manager, you can also add it to Keepass, so you wont be up shit creek if your phone dies. Personally I would make a separate volume for your OTP, so you retain dual verification, even if someone should gain access to one of the two.
Bitwarden if you share accounts between two devices, keepass if just one.
Not just between devices. Between people, too. Super handy to coordinate shared passwords. I use it with my wife for utilities and stuff.
You can also designate other Bitwarden accounts to have the ability to reset your master password, in case of emergency. So my wife has a password she can use to get in there, in case something happens to me. But people can’t do it on the sly, because it’ll notify the account holder of its use.
Bitwarden. Second place isn’t even close.
Bitwarden, 100%. You can self-host later if you feel like it, but don’t have to
Proton Pass, I use the full suite so it’s just convenient. It also has a few nice functions like e-mail aliases and secure password share links.
Let the proton haters come👀.
secure password share links.
That is one of the things that I really wish were on bitwarden
KeypassXC for sus stuff and Bitwarden for everything else.
You’re not tech savvy… Don’t self-host a password manager!
Actually… From a data-loss POV, it’s actually pretty much fine; since the server only serves an e2ee file anyways, each end device’s data is sufficient to recover everything.
I.e. if you host Vaultwarden, log into it on your mobile device, save all your logins; then fuck up the server, it doesn’t matter, because your mobile device not only still has everything, but also does not need a server connection to export everything in a way that can then be imported again on a new server installation.
This.
I am quite tech savvy, and I have been using 1password for years.
ProtonPass
you don’t have to be very tech savy to use a password manager. I use a keypass variant for local ones and keep important ones there and bitwarden online with stuff that if it got taken over would not matter.
bitwarden imo however, explore other options here
Keepass. I need to figure out a way to securely sync between Android <-> PC.
GNUpass should be very secure too but I need a way to view it on Android.
securely sync between Android <-> PC
Syncthing does the job pretty great for me. Local sync, rather than cloud. As long as your network is secure, you’re good
I use self-hosted Nextcloud to sync mine. Other people like Syncthing. I’m going to drop an unpopular opinion here: if you use a sufficiently strong master passphrase, you can sync your file with even gdrive or Dropbox if those are more convenient for you.
