Bitwarden
this post was submitted on 13 Feb 2025
72 points (97.4% liked)
Asklemmy
45257 readers
1121 users here now
A loosely moderated place to ask open-ended questions
If your post meets the following criteria, it's welcome here!
- Open-ended question
- Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions. Assume best intent and be excellent to each other.
- Not regarding using or support for Lemmy: context, see the list of support communities and tools for finding communities below
- Not ad nauseam inducing: please make sure it is a question that would be new to most members
- An actual topic of discussion
Looking for support?
Looking for a community?
- Lemmyverse: community search
- sub.rehab: maps old subreddits to fediverse options, marks official as such
- [email protected]: a community for finding communities
~Icon~ ~by~ ~@Double_[email protected]~
founded 5 years ago
MODERATORS
I'd used KeepassXC + Nextcloud to sync for ~4 years.
Then I switched to Bitwarden client + self-hosted Bitwarden Server/Vaultwarden for ~2 years and I haven't looked back.
The problem you'll face with KeepassXC + any syncing mechanism is that conflicts will happen. Meaning, you'll make a change on your cellphone, your internet has a hiccup or stops working. Then you make a different change on you desktop. When everything is synced, you'll be left with a KeePass conflict file that you need to fix. This might be fine if you immediately notice it, but if you stumble upon a conflict file from a month ago - good luck merging the differences.
Bitwarden client + Vaultwarden has improved my password experience radically. I have phones, laptops, browsers, etc all talking to Vaultwarden. Any conflicts are handled automagically by the clients. Everything "just works" in offline mode (meaning I can add/update credentials while offline and it'll update the server whenever it can - without needing to do any mental gymnastics).
I can share passwords with friends and family without needing to share everything. Plus, as my instance is self-hosted, my family can get "emergency access" (would be a "premium feature") to my passwords if something unfortunate happens to me. Plus, requesting emergency access is pretty easy to do, for non-tech people.
edit: a word
load more comments
(2 replies)
Unfortunately LastPass had some issues over the past years with hacking where encrypted vaults were stolen. Between myself and my friends in tech, I know of a few conpanies that ditched it after that.
For individual/personal use, I'd reccomend KeePass (whatever fork of it is up to date and maintained lately) and using somethung like syncthing to sync it across devices. That may not be super user friendly for non-technical users though, and I'm not sure how well it works with iPhones.
load more comments
(1 replies)
I'm similar to some here, using keepassxc and nextcloud
Use KeepassXC with Syncthing for maximum autonomy or Bitwarden for maximum ease. Both are FOSS. That's my recommendation and also seems to be the consensus among those who share your needs.
I've haven't looked at KeepPassXC before. I'll check that out today.
I use KeepassXC which is free and open-source. The passwords are stored as an encrypted file on your own system. No servers or businesses involved.
Personally I put mine in onedrive so it is synced between all of my devices though, so I guess there is still a server involved in that case
KeepassXC is great, but I realised very late in the process of setting it up, that the browser extension does not support Flatpak based browsers: "Please note that in general Flatpak and Snap based browsers are not supported, Ubuntu's Firefox Snap being an exception." (https://github.com/keepassxreboot/keepassxc-browser/wiki/Troubleshooting-guide)
I hope this might change at some point.
load more comments
(4 replies)
KeePass on sandstorm
One virtual server hosts all my open source apps, including my pw manager. It's insanely great.
Try the one click demo
https://apps.sandstorm.io/app/rq41p170hcs5rzg66axggv8r90fjcssdky8891kq5s7jcpm1813h
KeePass is really good. I use Keepass DX on my phone and use syncthing to sync them. Works amazing.
+1 for keepassxc + syncthing
Also generally recommebd syncthing as a replacement for cloud storage for you phone pics and music and stuff.
noted, ty
load more comments
(2 replies)
Samesies. KeePass works great for me as well, storing it on a server so it's accessible for both phones (using KeePassXC), and desktop using the web app for keeweb.info (app.keeweb.info).
I use and like Bitwarden and afaik you can self host a fork(?) too
You can self-host Bitwarden, too. My understanding is that VaultWarden is much simpler to self-host, though. Note that VaultWarden isn’t a “fork”; it’s a compatible rewrite in Rust (Bitwarden’s codebase, by contrast, is primarily C#).
I also use Bitwarden and strongly prefer it over every other password manager I’ve tried or investigated, for what that’s worth. I’d recommend it to 99% of non-enterprise users (it’s probably great for enterprise use as well, TBF).
The only use case I wouldn’t recommend it for is when you don’t want your passwords stored in the cloud, in which case KeePass is the way to go. To be clear, that recommendation does not apply if you’re syncing your vault with a cloud storage provider - even one you’re hosting, like SyncThing - even if your vault is encrypted. At that point just use Bitwarden or VaultWarden, because they’re at least audited with your use case in mind (Vaultwarden has only been audited once afaik, though).
load more comments
(2 replies)
Bitwarden paid version also lets you set emergency access for others in the case of your death or inability to access
+1
+1 for bitwarden
+1 for bitwarden as well
You can self host vaultwarden and use the bitwarden clients
I’m happy with Bitwarden, the iPhone app and windows software / Firefox extension all work seamlessly and easily