Currently I manage my passwords in an archaic but secure way, which is simply to synchronize a directory where I have my Keepass database between my devices, and I say archaic but secure because even if my Nextcloud server hosted on a VPS explode (where I have the database stored) I still have the databases stored locally, so I don’t lose anything.

I am currently interested in self hosting Vaultwarden although my biggest drawback is the fact that if my VPS were to fail for example I would not be able to access my database and if I lose access to the database I lose access to all my passwords. a pretty bad scenario.

So I have a question, what can I do to prevent that from happening? Apart from hosting everything on my own hardware of course, for now I prefer to use VPS for different reasons.

    • Swarfega@lemm.ee
      link
      fedilink
      English
      arrow-up
      4
      ·
      1 year ago

      Yup.

      I pay for Bitwarden premium. I periodically export my database manually. I know others use the CLI to do automated exports.
      I save the unencrypted JSON files into a Veracrypt container.

      • superbirra@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        edit-2
        1 year ago

        yeah, so host a vaultwarden, back it up and you will be happy!

        I suggest you don’t save unencrypted stuff there is no reason to do so so go and learn about the thing if you want!

        • Swarfega@lemm.ee
          link
          fedilink
          English
          arrow-up
          2
          ·
          1 year ago

          If it’s encrypted during the export you can only reimport it back into Bitwarden. If Bitwarden were to disappear I’d like to know my exports can be used to import into other password databases.

          • superbirra@lemmy.world
            link
            fedilink
            English
            arrow-up
            1
            arrow-down
            1
            ·
            1 year ago

            you’ve kept server keys backupped in a second location, which makes your backups very secure. During recovery you restore vaultwarden then you export your beloved plaintext thing and you reimport somewhere else. It’s pretty obvious none of these tools would let you backup plaintext shit and it’s a feature man :)