I started digging into opensource password managers and found that they all suck major ball sack. I ended up picking nothing. My two runner-ups were bitwarden. It works on Linux, Android, whatever apple’s shit runs on, and even runs on PC’s with the OS that you usually delete first thing. But the major drawback is that I can’t trust it. It’s got a “premium” version, and that has always meant a slow steady spiral into “you must pay now that we have you by the balls” situation. Another drawback is that it’s centralized, kill the company and so go your passwords I suppose.

The other runner up is called liso. This one comes with two major drawbacks. One is that is browser only so far. The other one is that it doesn’t work on Linux yet. Such a shit shit option. Everything else out there wants you to pay for encryption.

I did end up learning about pass on Linux. It creates encrypted passwords and there’s some compatibility with guis and maybe available on Android??? Big question mark. I’ve tried nothing yet. My password list seems to grow daily.

So what’s your favorite one?

  • tmpodMA
    link
    fedilink
    arrow-up
    23
    ·
    edit-2
    2 years ago

    BitWarden,¹ it just works really really well everywhere. The app is pretty much the same on every platform (which is a good thing imo) and you also have a CLI in case you prefer (may also be useful in some sort of backup script, I suppose). I personally use the cloud service they provide, but you could very easily and cheaply get a vaultwarden² server up and running and be the total master of your passwords, using a $2.5/m VPS or something like that.


    ¹ https://bitwarden.com
    ² https://github.com/dani-garcia/vaultwarden


    Edit: links
    Edit: also, the premium Bitwarden plan doesn’t mean that at all, imo. The plan can be very useful if you really need those features (sidenote: I advise ever using the TOTP thing, that’s just putting all your eggs into one basket and defeating the purpose of 2FA), it’s very cheap ($10/y iirc) and you can always export all your data with the CLI, setup a server and import that data.

    • imgprojts@lemmy.mlOP
      link
      fedilink
      arrow-up
      2
      ·
      2 years ago

      But they limit password sharing to two people. It’s weird. Why? Is that a really good feature? Will they just change policy and screw you over later?

      • tmpodMA
        link
        fedilink
        arrow-up
        13
        ·
        2 years ago

        It is a way to make some income out of an open-source project. If you want the convenience of their managed server, then you have to pay to access limitless orgs (the way to share secrets), otherwise you’re limited to just a 2-person org. The family pack is quite accessible imo, at $40/y for a 6-person org.
        Your other solution is, like I mentioned before, host your own server. vaultwarden supports orgs, like you can see in their feature list: https://github.com/dani-garcia/vaultwarden/wiki

        BitWarden is really great and a good example of a successful FLOSS project. I get the overall “companies just want to screw you up”, but one must not get completely blinded by it ;)