2023 was a record-breaking year for cybersecurity in a bad way. Ransomware payments hit a record high of $1.1 billion, which is likely to…

      • LWD@lemm.ee
        link
        fedilink
        arrow-up
        23
        ·
        10 months ago

        Vaultwarden is a great piece of self hosted server software, which meshes with Bitwarden software perfectly. And for people who can’t self host, IMO Bitwarden gives you more than enough bang for your buck with their own hosting plans.

        It’s one of the few examples of software being open source and ethically making money regardless. (For comparison, Standard Notes has tried pretty hard to make sure non-paying users have an inferior experience even if they self-host literally everything.)

        • clarfgg@lemdro.id
          link
          fedilink
          English
          arrow-up
          2
          ·
          10 months ago

          I was really disappointed about standard notes’ plans. Took me forever to get everything set up to self host, only to find I couldn’t even use markdown unless I bought a license? Silly.

          • LWD@lemm.ee
            link
            fedilink
            arrow-up
            1
            ·
            10 months ago

            Yeah, the value of buying a hosted service should be the fact you don’t have to worry about hosting it yourself. Not a tiny piece of Javascript that was grabbed from a third party developer anyway.

            I can see what they’re trying to do, but the experience leaves a really bad taste in my mouth.

        • PhAzE@lemmy.ca
          link
          fedilink
          arrow-up
          2
          ·
          10 months ago

          I’m excited that the bitwarden phone apps are getting a brand new native version for ios and Android soon.

      • umami_wasabi@lemmy.ml
        link
        fedilink
        arrow-up
        4
        arrow-down
        1
        ·
        edit-2
        10 months ago

        Tried, and not a fan of. The organizing features are kind of not what I expected. Sticking to KeepassXC for now.

        • SEND_NOODLES_PLS@lemmy.world
          link
          fedilink
          arrow-up
          3
          ·
          10 months ago

          I actually thought the organization stuff is pretty good, coming from keepassxc myself. The way we have it set up is that each of the members of our family all have VW accounts, and we have a common organization shared among us for stuff we all use (e.g. home devices). It’s all in one installation, so it’s pretty convenient. I don’t think I can do the same as easily with keepass.

          That being said, keepass is a really solid piece of software. I’d recommend it myself.

          • umami_wasabi@lemmy.ml
            link
            fedilink
            arrow-up
            3
            arrow-down
            2
            ·
            edit-2
            10 months ago

            First is the organizing feature. It doesn’t let me to have sub folders which I need to categorize items.

            Second is the TAN management to store my MFA backup codes. A feature the original Keepass have but KeepassXC doesn’t. You can use notes to mimic but it doesn’t auto expire after use, i.e. more manual work.

    • slazer2au@lemmy.world
      link
      fedilink
      English
      arrow-up
      46
      arrow-down
      1
      ·
      10 months ago

      Prefer KeepassXC but let’s be honest, the best password manager is the only you actually use and keep using.

        • slazer2au@lemmy.world
          link
          fedilink
          English
          arrow-up
          8
          arrow-down
          11
          ·
          10 months ago

          Everything gets hacked given enough time. Just not everyone says they were hacked or realised they were.

        • Swarfega@lemm.ee
          link
          fedilink
          English
          arrow-up
          3
          arrow-down
          1
          ·
          10 months ago

          KeepassXC looks better IMO. Also I like that hardware keys work without plugins. Personally I still use KeePass for one feature that XC doesn’t offer.

  • zifk@sh.itjust.works
    link
    fedilink
    arrow-up
    45
    ·
    10 months ago

    +1 For KeepassXC, I use it in combination with syncthing to have my passwords available on all devices.

  • ebits21@lemmy.ca
    link
    fedilink
    English
    arrow-up
    35
    ·
    edit-2
    10 months ago

    I use Bitwarden for passwords. Just works so well.

    KeepassXC and KeePassium for TOTP codes. I keep the database in the cloud but sync a key with Syncthing that’s needed to unlock the database on the devices themselves.

    • Lem453@lemmy.ca
      link
      fedilink
      arrow-up
      11
      arrow-down
      1
      ·
      edit-2
      10 months ago

      Locally hosted bitwarden (vault warden) that is only accessible on your local network is the way to go. When a new sync is needed away from home, wireguard VPN to connect back in makes everything nice and secure. Otherwise most of the time the vault is cached to the device locally so you don’t need to phone home to access passwords.

    • akilou@sh.itjust.works
      link
      fedilink
      arrow-up
      5
      ·
      10 months ago

      And they are really moving quickly with development. I feel like we’re getting new features monthly

    • Gogo Sempai@programming.dev
      link
      fedilink
      arrow-up
      1
      ·
      10 months ago

      Same. The UI is pretty good and modern, they support TOPT and cards as well and the development is being done at a good pace.

    • milicent_bystandr@lemm.ee
      link
      fedilink
      arrow-up
      7
      arrow-down
      1
      ·
      10 months ago

      And I do keepassdx on Android, with a (phone-specific) database synced with syncthing


      P.S. syncthing is fantastic: I hope more people consider hosting discovery servers and especially relays

          • milicent_bystandr@lemm.ee
            link
            fedilink
            arrow-up
            4
            arrow-down
            1
            ·
            10 months ago

            And it hides file names and sizes by splitting things up, which puts one extra layer of difficulty for someone trying to find my passwords file to target. I have a much stronger password on the syncthing directory than my normal type-each-time password to open keepassxc.

  • guillem@aussie.zone
    link
    fedilink
    arrow-up
    12
    ·
    10 months ago

    If you are into the command line, pass is also neat. You can even have your keys in a git repo and access it with a FOSS Android app (requires some dedication to set it up). It’s very useful to feed passwords to scripts without hardcoding them in the source.

  • Kekzkrieger@feddit.de
    link
    fedilink
    English
    arrow-up
    11
    arrow-down
    1
    ·
    10 months ago

    I use keepass with my database on onedrive.

    Then i connect every device to said onedrive account, copy the private key manually on each device that i need to use.

    I secure my databse with said private key + a passphrase.

    Might not be the best setup, but i feel like with passphrase+key i am secure enough to have the db file in the cloud.

    • BrikoX@lemmy.zipOP
      link
      fedilink
      English
      arrow-up
      10
      ·
      10 months ago

      I know they recently published the code for their clients, so that’s a plus. But I can’t find any independent audits for their architecture or clients.

      While all mentioned options does have independent audits done.

    • Lunch@lemmy.world
      link
      fedilink
      arrow-up
      2
      ·
      10 months ago

      Aslo more expensive than Bitwarden for example, should u want to pay for premium.

    • Rexios@lemm.ee
      link
      fedilink
      arrow-up
      1
      ·
      10 months ago

      Dashlane’s app experience across platforms was hit and miss for me. 1Password has been much better.

  • madcaesar@lemmy.world
    link
    fedilink
    arrow-up
    8
    arrow-down
    1
    ·
    10 months ago

    KeePass for me. I keep my encrypted vault in my 2 factor encrypted gdrive. Get the best of both worlds. No traditional cloud that’s a target for hackers and I have passes I can share across devices.