this post was submitted on 16 Aug 2023

28 points (91.2% liked)

Privacy

31814 readers

247 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

Chat rooms

[Matrix/Element]Dead
Discord

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago

MODERATORS

A entry-based password manager? (feddit.de)

submitted 1 year ago by Pantherina@feddit.de to c/privacy@lemmy.ml

35 comments fedilink hide all child comments

I dont agree with many things apple does at all, and I also think their password manager has flaws like revealing usernames without authentification.

It is pretty handy though, to have a file where the entries are stored unencrypted, and if the password manager detects an entry it prompts to decrypt exactly that field, maybe with a fingerprint.

KeepassDX needs to run in the background and be completely unlocked to even detect apps or password fields.

Do you know any existing app that can do this?

you are viewing a single comment's thread
view the rest of the comments

[–] qaz@lemmy.world 10 points 1 year ago (2 children)

You can also self-host Bitwarden using Vaultwarden.

[–] FoxBJK@midwest.social 5 points 1 year ago (1 children)

You can also run Bitwarden proper locally but unless you really know how to run and maintain a web server I wouldn’t recommend this.

[–] qaz@lemmy.world 3 points 1 year ago (1 children)

The official docker image uses a lot more resources than the vaultwarden container, but it allows significantly more than 100 users.

[–] Pantherina@feddit.de 1 points 1 year ago (1 children)

Why would any private person need this?

[–] qaz@lemmy.world 1 points 1 year ago

You don’t. I meant to say that only large organizations need the official Bitwarden docker setup, but I did not communicate that clearly enough.

[–] Devjavu@lemmy.dbzer0.com 3 points 1 year ago (1 children)

Yes, but that is still cloud based. Keepass is local

[–] thatcasualgamingguy@lemmy.nerdcore.social 3 points 1 year ago (2 children)

Well, only if you host it in the cloud. Not if you host it at home, for example.

[–] Rootiest@lemm.ee 3 points 1 year ago (1 children)

I think what they meant is that one option uses network connectivity while the other functions entirely offline

[–] Devjavu@lemmy.dbzer0.com 1 points 1 year ago

No, I did mean cloud based. Thank you anyways

[–] Devjavu@lemmy.dbzer0.com 2 points 1 year ago (1 children)

Which would make it hardly accessible outside of your home. Still not locally saved as well. And imho if he is not sure which password manager he should choose, he should maybe not self host just yet.

[–] Ekpu@lemmy.world 4 points 1 year ago (1 children)

Bitwarden keeps a local encrypted copy of the database and only connects to the server for synchronisation.

[–] Devjavu@lemmy.dbzer0.com -1 points 1 year ago (1 children)

I am aware. Why are you telling me this?

[–] Oisteink@feddit.nl 2 points 1 year ago (1 children)

Maybe because it seems you claim self-hosting bit warden is cloud only and that self-hosted is not accessible outside the house?
Note: I do not recommending self-hosting bitwarden

[–] Vexz@kbin.social 2 points 1 year ago (1 children)

Note: I do not recommending self-hosting bitwarden

Why not? I have my own instance running on my NAS and I love to have it self-hosted because this way I keep the passwords where I know nobody else can get them.

[–] Oisteink@feddit.nl 1 points 1 year ago (1 children)

Because a password manager is critical and if you ask me I’d say no. If you have the know how and understand the risk you won’t be asking

[–] Vexz@kbin.social 0 points 1 year ago (1 children)

Well, I work in the IT so I know some stuff about security in the digital world. But these systems (password managers in general) are built to be secure and not just tell every password they store without some security measures. Yes, I know there can be security holes, bugs and so on. But that's why these tools get thoroughly tested.
You always have to take risks in the world of computers. So what's the point? Being as secure as possible? Then better not even bother with password managers at all because they all can have security holes.
It's more about how much you trust a password manager and how much you trust yourself in how cautious you use it. The risk is always there.

[–] Oisteink@feddit.nl 0 points 1 year ago (1 children)

Ok. I’m quite the IT person myself, and I can say I’d not recommend you running your own either.

[–] Vexz@kbin.social 1 points 1 year ago (2 children)

That's fair. Everyone has a different opinion. But I think it's always better to self-host Bitwarden than using the cloud service because then your passwords are stored in a place where you have full control of. Afaik if you use the official Bitwarden vault your passwords are stored on some Amazon servers.

[–] Oisteink@feddit.nl 2 points 1 year ago

Self hosting is not for everyone. You need to understand backup, redundancy and recovery. That would be the main reason I don’t recommend self-hosting. Bitwardens self-hosting package are mature enough for me.

So it’s more about loosing all your passwords than someone breaking in to your vault

[–] thatcasualgamingguy@lemmy.nerdcore.social 1 points 1 year ago (1 children)

Security is only one part of it. If you host a password manager yourself then things like availability, backups, disaster recovery and monitoring also become your responsibility. I'm hosting my own vaultwarden but there is only a very limited amount of people I would suggest self hosting a password manager to, because I know they have the knowledge to do it and understand the risks.

[–] Vexz@kbin.social 1 points 1 year ago

Since every client of Bitwarden makes a copy of the whole database on the server when it syncs, it's not like all your credentials are lost when the server gets unavailable. You can make an export of your database on that client and import it on another instance. This said you already have a built-in backup feature.