this post was submitted on 03 Aug 2022
52 points (100.0% liked)

Privacy

789 readers
22 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

I started digging into opensource password managers and found that they all suck major ball sack. I ended up picking nothing. My two runner-ups were bitwarden. It works on Linux, Android, whatever apple's shit runs on, and even runs on PC's with the OS that you usually delete first thing. But the major drawback is that I can't trust it. It's got a "premium" version, and that has always meant a slow steady spiral into "you must pay now that we have you by the balls" situation. Another drawback is that it's centralized, kill the company and so go your passwords I suppose.

The other runner up is called liso. This one comes with two major drawbacks. One is that is browser only so far. The other one is that it doesn't work on Linux yet. Such a shit shit option. Everything else out there wants you to pay for encryption.

I did end up learning about pass on Linux. It creates encrypted passwords and there's some compatibility with guis and maybe available on Android??? Big question mark. I've tried nothing yet. My password list seems to grow daily.

So what's your favorite one?

you are viewing a single comment's thread
view the rest of the comments
[–] tmpod@lemmy.pt 23 points 2 years ago* (last edited 2 years ago) (1 children)

BitWarden,¹ it just works really really well everywhere. The app is pretty much the same on every platform (which is a good thing imo) and you also have a CLI in case you prefer (may also be useful in some sort of backup script, I suppose). I personally use the cloud service they provide, but you could very easily and cheaply get a vaultwarden² server up and running and be the total master of your passwords, using a $2.5/m VPS or something like that.


¹ https://bitwarden.com
² https://github.com/dani-garcia/vaultwarden


Edit: links
Edit: also, the premium Bitwarden plan doesn't mean that at all, imo. The plan can be very useful if you really need those features (sidenote: I advise ever using the TOTP thing, that's just putting all your eggs into one basket and defeating the purpose of 2FA), it's very cheap ($10/y iirc) and you can always export all your data with the CLI, setup a server and import that data.

[–] imgprojts@lemmy.ml 2 points 2 years ago (1 children)

But they limit password sharing to two people. It's weird. Why? Is that a really good feature? Will they just change policy and screw you over later?

[–] tmpod@lemmy.pt 13 points 2 years ago

It is a way to make some income out of an open-source project. If you want the convenience of their managed server, then you have to pay to access limitless orgs (the way to share secrets), otherwise you're limited to just a 2-person org. The family pack is quite accessible imo, at $40/y for a 6-person org.
Your other solution is, like I mentioned before, host your own server. vaultwarden supports orgs, like you can see in their feature list: https://github.com/dani-garcia/vaultwarden/wiki

BitWarden is really great and a good example of a successful FLOSS project. I get the overall "companies just want to screw you up", but one must not get completely blinded by it ;)