What password manager do you recommend?

backshift0022, 11 months ago

As others say, Bitwarden checks all of those boxes, and KeepassXC technically doesn’t fit the “not self hosted” requirement, but you can store your database file in any cloud storage you want.

borlax, 11 months ago

I self host bitwarden currently, but have been playing with the idea of using Vaultwarden instead, just haven’t gotten around to uprooting my working system.

zahel, 11 months ago

Bitwarden. Either selfhosted or the official

ebits21, 11 months ago (edited 11 months ago)

There’s only two real choices imo.

Bitwarden or Keepass (KeePassXC for desktop, you’ll need one of many app choices for your phone).

Keepass you would sync to your own cloud provider and use a key file for protection.

Bitwarden is the obvious answer that fits all your criteria.

Rakn, 11 months ago

Why are these the only real choices? What makes the others not real?

ebits21, 11 months ago

Only ones I trust that are open sourced and have some kind of audit.

Rakn, 11 months ago

Don’t closed ones like 1Password also have audits? But I guess it’s a personal philosophy.

ebits21, 11 months ago

Sure. But I wouldn’t trust closed source software for passwords. Personal decision.

ChrislyBear, 11 months ago

What are thr benefits of KeePassXC over the regular “original” application?

ebits21, 11 months ago (edited 11 months ago)

I use Linux and flatpaks so XC is the obvious choice for me - much nicer to use across platforms that aren’t a windows and only one available as a flatpak. Nicer interface. Supports TOTP codes (all I use it for, Bitwarden for passwords). More active development.

I use KeePassium on iOS with the same vault.

cwagner, 11 months ago

• Bitwarden: Paid, but with a free tier, ticks all your boxes
• KeepassXC: Free, ticks all but browser access (great android and browser integration, though), syncs through any file sync service (WebDAV support makes for a nicer Keepass2Android experience, though)

Note that I’d not recommend Keepass for multiple users, I heard of sync issues there and you can’t do partial shares. Not an issue for me, though. With Bitwarden, the free tier offers 1 extra user.

Personally I don’t want to be dependent on some other service (like bitwarden hosting for me), but also not be reliant on my own server for something as important as passwords, that’s why I’ve been using Keepass(XC) for the last 7 years (thought it was longer, but it turns out I had LastPass premium till 2016. Fuckers).

Aussiemandeus, 11 months ago

I use Samsung notes. Save all my passwords in there, they’re all different and strings of words with characters in them etc.

Then i lock the note with one secure password.

kvvy, 11 months ago

I'd switch to something like BitWarden.

001100010010, 11 months ago (edited 11 months ago)

Um… I dont think that’s a password manager…

arin, 11 months ago

Samsung has Samsung Pass for an actual password manager

NotAPenguin, 11 months ago

Bitwarden

Dirk, 11 months ago

Since you don’t want to selfhost anyway just use the one built-in to your browser. Nowadays you can set up synch with a password

Coreidan, 11 months ago

Terrible idea. Never use your browser to save passwords. Way too easy to hack.

Dirk, 11 months ago

I am pretty sure you can provide reliable sources that are not one blog article by one individual telling their opinion.

If it’s really “way too easy to hack” there should be plenty of souces.

Double_A, 11 months ago

For important things Keepass (which I sync in Onedrive). For casual things whatever the browser offers… or some random long password and password reset ._.

ram, 11 months ago

Bitwarden checks all the boxes. I’ve had great experience with it. bitwarden.com

I will say, auto-fill on load is a bad idea. On desktop I keep my auto-fill bound to a key so it doesn’t actually end up in fields it shouldn’t be.

2FA is locked behind the $10/year premium if that’s something you wanted, but beyond that the free plan has everything 99% of people will use. They do third party security audits, have public white papers, and is completely open source.

hinterlufer, 11 months ago

Email and TOTP 2FA options are available in the free version, YubiKey, FIDO2 and Duo options are only available in the 10$/year premium option.

Moonwalk, 11 months ago

I’m sure they meant TOTP 2FA for the accounts saved in Bitwarden, not for the Bitwarden login itself.

Saintcloud, 11 months ago

I’ve been curious about a Yubikey like option for a bit now. Would you recommend one and if so which type?

dan, 11 months ago

Get a Yubikey that supports Webauthn and FIDO2. It’s the future of two-factor authentication on the web. At work we use the YubiKey 5C Nano, but I think the entire Yubikey 5 series supports Webauthn.

DuskLoaf, 11 months ago

Is there much benefit to having access to the 2FA option if I already use RAIVO for 2FA codes.

Interstellar_1, 11 months ago

No, it’s good to have a seperate service for that

Makeshift, 11 months ago

Bitwarden only autofills if the page’s URL is the same as the account in your vault. So it actually helps you make sure that you aren’t putting your info into a phishing site or something

although, I’m pretty sure autofill is disabled by default anyway?

ram, 11 months ago

Bitwarden only autofills if the page’s URL is the same as the account in your vault. So it actually helps you make sure that you aren’t putting your info into a phishing site or something

This is true, though wasn’t my concern. My concern is that it (and other PW managers ofc) can sometimes fill in fields its not supposed to, and you end up accidentally including a username or password in a GET header.

although, I’m pretty sure autofill is disabled by default anyway?

Auto-fill on page-load is, yes.

ChrV, 11 months ago

Last year I tried (and paid) 1Password.
For the past 6 months I'm using Bitwarden and it's really good. I find 1Password's UI better but if we consider the cost it's better to stay with Bitwarden.

Swuden, 11 months ago

1Password isn’t open source, is it? I use it and I’m super happy with it though. I don’t mind paying a bit for good security. I do wish it was OSS though.

ChrV, 11 months ago

No I don't think it is. I was super happy too but I decided to give Bitwarden a fair try and it's really good too. I only miss the 2FA codes that 1Password filled automatically but I'm using Aegis now since I had some worries about having one app with both the passwords and 2fa codes.

Onionizer, 11 months ago

Bitwarden can auto copy the 2FA code so you just hit ctrl+v

ChrV, 11 months ago

Not in the free version unless I'm mistaken

skatrek47, 11 months ago

I have also really enjoyed 1password, I also subscribe to Fastmail and the easy to make “masked emails” gives me additional peace of mind and makes that practice of unique or throwaway emails much easier to implement.

majorgator13, 11 months ago

Currently using bitwarden. Moved over from LastPass. Free and works on browser plus mobile. Like it so far.

andreluis034, 11 months ago

I think bitwarden fills all of your requirements.

RustedSwitch, 11 months ago

It’s been a long time since I switched to 1Password, but I used to use keepass. I’m not sure whether keepass has a browser extension, but otherwise (if I recall) it checks your other boxes.

1Password is great, even though it’s not open source, and you get to a spot in life where $3/mo is feasible.

japps13, 11 months ago

I like the Password for Nextcloud app. I self-host mine, but I think there might be Nextcloud instances that you can access. It is encrypted, and has an app for smartphones.