Good thing i switched to selfhosted vaultwarden setup.
Sees bitwarden drama, Noooo๐ญ
this post was submitted on 21 Oct 2024
66 points (100.0% liked)
Open Source
30801 readers
881 users here now
All about open source! Feel free to ask questions, and share news, and interesting stuff!
Useful Links
- Open Source Initiative
- Free Software Foundation
- Electronic Frontier Foundation
- Software Freedom Conservancy
- It's FOSS
- Android FOSS Apps Megathread
Rules
- Posts must be relevant to the open source ideology
- No NSFW content
- No hate speech, bigotry, etc
Related Communities
- !libre_culture@lemmy.ml
- !libre_software@lemmy.ml
- !libre_hardware@lemmy.ml
- !linux@lemmy.ml
- !technology@lemmy.ml
Community icon from opensource.org, but we are not affiliated with them.
founded 5 years ago
MODERATORS
Yeah, with all the stuff going on with password managers, I wonder if there's a truly future-proof setup that can be self-hosted and will never have these issues.
I was a Keepass user many years ago, but I'm not confident that a Keepass-like system would work well with some very computer-illiterate family members. Bitwarden is hard enough to teach them, and it's one of the easy ones!
This one hurts... as I use this as my password manager on mobile :{
what are you gonna do now? i might switch to keepassxc but i don't wanna learn new stuff.
I'm not sure. As long as it keeps working, I'll probably keep using it until a viable alternative appears. I use my laptop more than my phone, so I don't actually need passwords on my phone as often.
Honestly we need to invent something better than password managers.
Webauthn already exists.
This is more often 2FA & a password is still needed
Best we have and probably will ever have on the current web. Not sure what the problem is with password managers?
Personally I would never trust an app to save and manage my passwords. There are a lot of risks with it. But I still think writing down passwords on a piece of paper and storing it in a physical safe when needed is the best approach so ik nobody will understand.
Differences in the thread model. And of course convince. How to you backup your paper regulary? How do you transfer it? What if you need to access a pasdword when you are not home?
Most ppl will just reuse or use very weak passwords when they have to write every password they have to enter.
Differences in the thread model.
Well yea people with the "I don't care. I just press the button and it always works" model do exist.
Most ppl will just reuse or use very weak passwords when they have to write every password they have to enter.
But browser cookies exist?
I know a lot of services that log you out regularly. Or need a password when you change settings or whatever.
Well yea people with the "I don't care. I just press the button and it always works" model do exist.
WTF no. Password managers are reasonable secure. That is no i don't care behavior.
And when you are worried about password managers you should not use cookies. Stealing a cookie is much more simple than stealing and encrypting your password safe.
I know a lot of services that log you out regularly. Or need a password when you change settings or whatever.
Ok that's true.
Stealing a cookie is much more simple than stealing and encrypting your password safe.
I didn't mean stealing. I meant losing passwords due to a system malfunction or losing the password for the manager. In that case you lose all your passwords in one moment. That's scary. Also the manager can become proprietary and leak the data to governments. Though in that case it's all about your trust to the manager.