The Best Password Managers in 2024
2023 was a record-breaking year for cybersecurity in a bad way. Ransomware payments hit a record high of $1.1 billion, which is likely to…
2023 was a record-breaking year for cybersecurity in a bad way. Ransomware payments hit a record high of $1.1 billion, which is likely to…
Clusterfck, I love Dashlane, someone tell me why it’s bad.
LunchEnjoyer, Aslo more expensive than Bitwarden for example, should u want to pay for premium.
BrikoX, I know they recently published the code for their clients, so that’s a plus. But I can’t find any independent audits for their architecture or clients.
While all mentioned options does have independent audits done.
Rexios, Dashlane’s app experience across platforms was hit and miss for me. 1Password has been much better.
possiblylinux127,
NostraDavid, For Keepass users: KeepassXC can read your keepass file just fine, but KeepassXC can also run on Linux, whereas Keepass runs only on Windows.
miguel, Pass (Password Store)
cyph3rPunk, KeepassXC with Yubikey
Xavier, Ah, I suppose it’s TOTP/HOTP or HMAC challenge.
I am waiting for FIDO2 to work between keepassxc and yubikey. 🥳
navi, I really enjoy 1Password for easy vault sharing between family members. I was able to get my (not so technically literate) siblings and dad onto my family plan. Baby steps!
guillem, If you are into the command line, pass is also neat. You can even have your keys in a git repo and access it with a FOSS Android app (requires some dedication to set it up). It’s very useful to feed passwords to scripts without hardcoding them in the source.
ebits21, (edited ) I use Bitwarden for passwords. Just works so well.
KeepassXC and KeePassium for TOTP codes. I keep the database in the cloud but sync a key with Syncthing that’s needed to unlock the database on the devices themselves.
Lem453, (edited ) Locally hosted bitwarden (vault warden) that is only accessible on your local network is the way to go. When a new sync is needed away from home, wireguard VPN to connect back in makes everything nice and secure. Otherwise most of the time the vault is cached to the device locally so you don’t need to phone home to access passwords.
rambos, Exactly my setup
haui_lemmy, My setup
tuhriel, I do it exactly like that, except that im connected via vpn most of the time, since my pihole is also located in my lan
Churbleyimyam, KeepassXC & Syncthing
milicent_bystandr, And I do keepassdx on Android, with a (phone-specific) database synced with syncthing
P.S. syncthing is fantastic: I hope more people consider hosting discovery servers and especially relays
Churbleyimyam, Syncthing is so good!
eya, KeePassXC my beloved
RememberTheApollo_, I get a good reason to stay away from lastpass is their dealing with getting hacked. Valid. However, bitching about not getting to use all the paid features as a free user is ridiculous.
Nath, I don’t know if this is still the case, but we trialled LastPass enterprise around 10 years ago. They didn’t have an API. They had no intention of ever introducing an API. So, the script could spin up a database, but couldn’t store a break-glass su user into the vault without actually giving it to a human, first. Some enterprise solution. 🙄
BrikoX, In a vacuum, maybe. But there is a difference between adding new features to a paid plan and removing features from a free plan.
BleatingZombie, Microsoft Excel file
bulwark, Post-it notes on the monitor.
joeldebruijn, Under the keyboard for added security.
possiblylinux127, That’s terrible practice
Clusterfck, But during game time, best possible choice.
possiblylinux127, No, I’m pretty sure it is very much not
Catsrules, Yeah they should be using Office 365 or Google drive.
possiblylinux127, How about a password manager
Catsrules, Technically Excel and 365 and Google sheets can be a password manager.
possiblylinux127, My point is shouldn’t be used as a password manager
Scolding0513, OneNote page
bushvin, 😱
bloubz, (edited ) Indeed I have 1Password (was the best proprietary) and I’m switching to Proton Pass. This year they lacked features but their integration of their Simple login email aliases is game changer
Akareth, Keepass + Syncthing is a great combination.
mp3, And with Syncthing’s Untrusted Device Encryption feature I can use my VPS as an extra node for synchronization without worrying touch if it becomes compromised without me knowing.
superbirra, the file is already encrypted so you aren’t getting much more security
mp3, (edited ) I also sync other stuff, so it’s useful anyway.
milicent_bystandr, And it hides file names and sizes by splitting things up, which puts one extra layer of difficulty for someone trying to find my passwords file to target. I have a much stronger password on the syncthing directory than my normal type-each-time password to open keepassxc.
red_rising, Any options on StrongBox? It seems like a good option but they don’t quite have the reputation that others have, despite being around since 2017.
temmink, StrongBox is just a client that uses keepass databases. I think it integrates well when using Apple devices and you can still use your databases on other platforms.
red_rising, Ah thanks. Ya it’s Apple only but I like how it doesn’t sync to a central server but will still sync between your devices across your local network. Seems to minimize a lot of attack surface.
ebits21, (edited ) Strongbox is great, but expensive. I settled on KeePassium instead mostly based on cost.
red_rising, It’s only $20 a year or $80 for life. I feel like that’s a fair price to support the developers.
ebits21, It’s not unfair, but for my use case there are cheaper or free alternatives that work really well.
And I’m Canadian so it’s a bit more than that dollar wise.
red_rising, That’s a fair point.
zifk, +1 For KeepassXC, I use it in combination with syncthing to have my passwords available on all devices.
kurikai, Same for me
TheWoozy, Nextcloud syncs my KeepassXC safe.
milicent_bystandr, Syncthing for me, but Nextcloud has its advantages too.
Takios, Been using that same setup and very happy with it.
Add comment