You must log in or register to comment.
I second the recommendation for Bitwarden.
I switched over from Dashlane and never looked back. They even have a browser extension for mobile Firefox (the browser you should be using anyways) so it’s easy and convenient on all my devices.
+1 for Bitwarden. There were growing pains at the start to move off of iCloud Keychain. Once done and being more proactive with managing passwords it’s so good and trustworthy
Agreed. Bitwarden has been fantastic. I just wish it was easier to swap between accounts on the browser extension. You can do it on desktop and mobile pretty easily.
Is there another way than just going back and forth and manually putting them in?
Manually putting what in?
You can import from another service if that’s what you mean
First time using it you export your password data and move it into BW. Then browser extension can help auto fill and detect new ones. It also has a password generator built in so that’s handy
Phone app can integrate and auto fill. On iPhone I’m not sure it if can detect and save. But the few times I’ve needed to sign up on phone I manually input.
I still use Firefox password and iCloud saves when prompted. Doesn’t hurt to have a backup I suppose.
I spent some time when I migrated from just storing my passwords in Chrome. I went through and made sure all of them were strong, unique passwords. I set up categories for all of them. I set it up so I could share the right ones with the family and whatnot.
Doing the raw import is easy, but it was a good time to make sure everything was in order.
Is there a reason to use the mobile extension over the app itself? The app can input into other apps as well
Don’t know honestly - I’ve never tried the app so I don’t have a comparison. Didn’t even know they had one.
Ah nice :)
I find it a lot better, worth a try if you can get it
https://play.google.com/store/apps/details?id=com.x8bit.bitwarden
Part of why I picked Bitwarden over keepass was that it had nice apps/extensions for all my devices, like you said. I didn’t miss any features when I switched, and instead gained a few cool ones.
The app is nice if you want to use bitwarden to login to other appa. You can allow it permission to run alongside other apps that can fill in login forms.
The desktop application runs on Chromium, so that’s something to consider.
I have never even got the mobile extension to work. When I set it up and enter in my email and master password, the Captcha that is supposed go show up is missing entirely. There is just a blank space under the password field where the Captcha is supposed to have appeared.
If you have a custom DNS or VPN, that might be blocking the CAPTCHA.
Been using KeePassXC (and before that, KeePassX) since I abandoned LastPass about a decade ago. The apps integrate with Nextcloud perfectly and at least for me, it’s a breeze. I use it for TOTP too, and I second the recommendation of a hardware token for an additional layer of security. There are some USBc options that work on phones (I’m using a pixel 7 pro).
yup, no need to pay for a password manager. and far more secure.
I never got YubiKey to work on desktop with it. Key files seem to work good enough and easy to manage.
YubiKey works for me, both on desktop with KeePassXC and on Android with KeePassDX to the same DB
I like the look of KeePassDX but I was bothered by the fact that I have to use the yubikey every single time to unlock the database, unlike keepass2android which allows me to store the yubikey credential with biometric lock until the phone restarts. Keepass2android is not as nice of an app but that feature was really required for me.
KeepPassXC can do this as well, but it does require the yubikey to be inserted every time you want to save a change to the database.
Look under Settings -> Security -> Convenience -> Enable database quick unlock (Touch ID/Windows Hello)
Using that I can quick-unlock my database using my laptop’s fingerprint scanner, just like how KeepPassDX works on Android.
its not a huge issue on KeePassXC because I keep a yubikey nano plugged into my laptop, but for my phone, I haven’t been able to make this work reliably with KeePassDX. I’ll have to give it another go.
Ah yeah you are right, it makes me tap my key every time I open the app.
The biometrics seem to only replace the master password.
I do wish it worked more like KeePassXC where the key is only needed to save the database after unlocking and confirming with fingerprint
It does require some configuration within yubikey manager. I did not find it straightforward but once set up its really reliable.
While we’re on the topic of open source products, may I suggest the SoloKey:
So it’s like a YubiKey?
Yes, same type of device.
I’m curious about using the same store for passwords and TOTP. Technically if someone gets screwed to your database, they have both your factors, yes? But I guess it does thwart someone trying to brute force your password.
Adding a hardware key, like Nitrokey, would be an additional level of safety there. I would not use the database without some kind of additional key (something you know and something you physically have).
If there’s something nefarious that has user access, you’ve already lost in that regard.
Just to add, you can also use multiple databases to help maintain separation
This is what I do: I have 3 KeepassXC databases (regular passwords, “security” questions, TOTP tokens) each with a different password.
Technically you do lose the second factor, but nowadays 2FA is often mandatory or they force some crap like SMS/email verification onto you. If you are aware of the risk then it isn’t a huge deal.
Though you might want to consider not using it at least for the most important stuff like banking (here you don’t even have an option; banks have their own 2FA apps that you have to use) and primary/recovery email.
when lastpass screwed around with it’s free tier offering, i switched to bitwarden and haven’t felt any reason to use or even try anything else, it’s rock solid
Same. Been very happy. Great iOS integration.
Exact same boat. It was so easy to migrate from lastpass, I didn’t even feel any friction.
deleted by creator
+1 for BitWarden.
Plus, it’s ridiculously easy to self-host with VaultWarden.
Bitwarden gang
Bitwarden - does everything, and is free. You can even setup a shared vault so 2 people can have access to shared stuff like online shopping and streaming sites. Takes a bit of admin work but it is not hard.
Sadly that second but requires the other person to care enough to make an account and not just text you when they need the password 😂
Just send a photograph of your screen showing the requested password of 25 random characters so they have to type it out. Guaranteed their next question will be where they sign up for an account.
lol that’s generally what I do. Sometimes I’m nice enough to copy and paste. We don’t share a lot of accounts so it’s not a huge issue.
Bitwarden, Been using it since 2021
Proton Pass pisses me off. Proton is such a money grubbing company that takes FOREVER to release stuff.
I pay $120 per year for ProtonMail, and they want me to pay $180 to unlock the full Proton Pass. $60 per year, for something that BitWarden does for only $12 per year.
Not to mention you’ll be waiting years for apps to come out. They’re such a fragmented company. The Android remake is already so far past the estimated release date it’s sad. Proton Drive Windows app finally came out, but fuck Mac and Linux users, I guess.
BitWarden is available for Windows, Linux, Mac, 9 browsers, iOS, Android, and CLI. - Premium is $1/month.
ProtonPass is available for iOS, Android, and 4 browsers. - Premium is $5/month.
Can’t wait for Proton to release a few more half baked services with outdated apps and a promise to update them in a year, but then 3 years later there’s still radio silence. Perhaps use your paid services money for developing in a timely manner? Holy shit.
It’s actually 10$ a year.
Not where I am from.
I meant the Bitwarden premium sub.
Well ya, but I’m not American, so it’s not $10 for me.
It’s also 10€ per year if you live in the EU.
That’s because Euro and USD are similar. That’s how currency works. It’s not $10 where I live lol.
Oh well.
100% They attack so many fronts in the worst way possible.
Also why would someone who want enhanced privacy put all their eggs in the basket by trapping themself in Proton’s ecosystem. Compartmentalize is important, and it ends up being cheaper too. Proton’s pricing is cutthroat.
They are not in the privacy business. They are in the business of business.
I agree with the fragmented part. Even their apps have different unlock interfaces, like they’re each made by a different company
I’m using proton mail for free, paying like $12 a year for proton pass.
How?
That’s interesting. Looks like I received an email to get 75% off and I signed up using that
deleted by creator
Not the point.
Paying for something is great. Not allowing paying customers to add a simple service without having to upgrade to the next tier, forcing them to buy shit they don’t want, is scummy.
deleted by creator
I’m happily using YubiKey, wish everyone implemented U2F
deleted by creator
I’m in the exact same boat with these 3. couldn’t be happier
Yep, me too. Unbelievable that it was LastPass, Authy and Gmail a few years ago. What a shift for me :-).
Wow, so 1Password is not recommended anymore? How come? I’ve been using them for years.
Possibly because it is not open source and doesn’t have anything to offer that the other recommendations do not.
Ya I think so. These are always tech articles and Foss software is always a big feature.
But 1password has on going audits and a sane ui and mobile apps that pass the boomer-parent test. Canadian company too which is nice given the US centric tech world.
I use it because I share an account with my parents, so I can manage their stuff. My fathers old local Pw-Manager was a mess.
Fastmail integration for masked emails! If you already have an email provider you like then yeah not much to offer. But if you’re like me a few years ago and was looking to get off of chromes password manager and gmail, then 1password and fastmail is a nice combo.
Bitwarden has integration with Fastmail, as well as for many other alias services (anon addy, SimpleLogin, etc). They also just added support for selfhosted anon addy, and are working on adding support for self hosted SimpleLogin.
It’s in their honorable mentions.
Have no source available clients is the author’s main nit pick.
Which personally I think does a disservice to their readers. If their article ends up high in search results for “best password manager 2023” for whatever reason, most people aren’t going to care if there’s a source available client or not.
Dash lane and 1Password might not have source available clients but they likely have better UI/UX than these more open source alternatives that are made for people with technical expertise.
Former 1password user, current Bitwarden user. Jumped ship when 1password dicked local vaults. Never been happier.
And it’s a FUCKLOAD cheaper. 1password is very overpriced.
Bitwarden is practically free. You can pay for some extra features but all the core features and unlimited passwords storage works. Nobody should pay for a password manager.
Same. We’ve been using it for about a decade I think. One vault for my wife and I to share. Hosted on their end in case all our self hosted stuff takes a crap our passwords are still available. Been considering looking at bitwarden but haven’t had the time.
I’ve been thinking about trying it… I like Windows Hello integration which seems to easily break in Bitwarden
I can personally recommend 1Password, the Windows Hello integration works really well. Asks for your PIN code to unlock (or your master password after a reboot). If you put your computer to sleep rather than turn it off overnight, you won’t need the full master password.
Also, if you’re so inclined, 1P has an excellent CLI tool you can use for accessing vaults programmatically. I use this for auto filling TOTP codes for my Final Fantasy XIV login.
I love 1Password. Works well.
I use KeePass and keep it synced with self hosting Nextcloud. I get the appeal of bitwarden, but I’m really trying to get off other people’s computers.
You can host Bitwarden. It’s open source. I do it myself.
Now the open source version is called vaultwarden
Now the open source version is called vaultwarden
Bitwarden with the self hosted vaultwarden server then, that way you get the nice bitwarden experience, apps, browser plugins, but all hosted on your own hardware. I run my vaultwarden server on my synology.
Syncthing is another good cloud-free option.
Vaultwarden can be easily hosted for free
KeePass for me for the same reason.
Bitwarden. Tried Proton Pass but ultimately stuck with Bitwarden.
It has been my password manager of choice for quite some time and I didn’t see any reason to change.
While I find a discussion about password managers great, I found the article to be underwhelming.
15 years ago the common logic was the most likely way for a password to get stolen is by writing it down and leaving it in an accessible spot, and somebody stealing the password there.
I don’t think that logic holds anymore, and with the LastPass breach I think that’s proof you want to step away from the cloud not towards it. Imo the most secure way to store passwords is to generate multiple random codes, use a portion of each and then just write those down.
15 years ago you had to worry about the people around you. Now you have billions of bots trying to force shit all the time.
You can also use a password manager that’s not connected to a cloud. Or an encrypted usb stick. The problem with writing it on paper is, that people tend to use too short passwords or repeated passphrases. Using a really long master key and a key file with an encrypted database is safer than a cloud.
Usb sticks corrupts damn easily. Even faster carrying them around. Learnt that the hard way.
Or does anyone know about an usb stick that is practically immortal, that they can recommend?
NVME ssd in a carry usb adapter. It’s as reliable as a regular ssd, but it’s way more portable and durable than commercial external hdds. A little bigger than usb flash drives but worth the tradeoff. Wouldn’t use it as the only backup place for a password dB file but for carrying around its pretty good.
