I just lead the migration from LastPass to 1Password for the business I work at. It was really prompted by the breaches at LP and their poor handling of it. For personal stuff, I just did whatever I was doing at work because the business plans come with free licenses for personal accounts.
this post was submitted on 15 Jun 2023
190 points (100.0% liked)
Privacy Guides
17103 readers
1 users here now
In the digital age, protecting your personal information might seem like an impossible task. We’re here to help.
This is a community for sharing news about privacy, posting information about cool privacy tools and services, and getting advice about your privacy journey.
You can subscribe to this community from any Kbin or Lemmy instance:
Check out our website at privacyguides.org before asking your questions here. We've tried answering the common questions and recommendations there!
Want to get involved? The website is open-source on GitHub, and your help would be appreciated!
This community is the "official" Privacy Guides community on Lemmy, which can be verified here. Other "Privacy Guides" communities on other Lemmy servers are not moderated by this team or associated with the website.
Moderation Rules:
- We prefer posting about open-source software whenever possible.
- This is not the place for self-promotion if you are not listed on privacyguides.org. If you want to be listed, make a suggestion on our forum first.
- No soliciting engagement: Don't ask for upvotes, follows, etc.
- Surveys, Fundraising, and Petitions must be pre-approved by the mod team.
- Be civil, no violence, hate speech. Assume people here are posting in good faith.
- Don't repost topics which have already been covered here.
- News posts must be related to privacy and security, and your post title must match the article headline exactly. Do not editorialize titles, you can post your opinions in the post body or a comment.
- Memes/images/video posts that could be summarized as text explanations should not be posted. Infographics and conference talks from reputable sources are acceptable.
- No help vampires: This is not a tech support subreddit, don't abuse our community's willingness to help. Questions related to privacy, security or privacy/security related software and their configurations are acceptable.
- No misinformation: Extraordinary claims must be matched with evidence.
- Do not post about VPNs or cryptocurrencies which are not listed on privacyguides.org. See Rule 2 for info on adding new recommendations to the website.
- General guides or software lists are not permitted. Original sources and research about specific topics are allowed as long as they are high quality and factual. We are not providing a platform for poorly-vetted, out-of-date or conflicting recommendations.
Additional Resources:
- EFF: Surveillance Self-Defense
- Consumer Reports Security Planner
- Jonah Aragon (YouTube)
- r/Privacy
- Big Ass Data Broker Opt-Out List
founded 2 years ago
MODERATORS
I use OneNote, with a bunch of coded words that mean other things and mix and match those to make longer passwords that are all different. Because I'm too lazy for a real app, and this is secure enough and useful enough.
It might be a minimal effort to set up. But afterwards any pw-manager will propably save you lots of effort.
Self hosted Bitwarden is the bees knees.
I've been using keepass on PC and KeepassDX on Android.
I've been using KeePass and KeePassdroid for at least 10 years now. "Sync" my dB through one drive, only because at one time we were allowed to use our personal one at work, but since they blocked personal folders in favor of corporate ones it is much less handy.
Bitwarden. I left LastPass about 3 years ago and haven’t looked back. I pay for bitwarden so I can use the TOTP feature and because i can’t wrap my head around the recovery process for my wife if something were to happen to me. I think another, more technically fluent human will need to be involved if that ever comes to pass.
load more comments
(2 replies)
KeePassXC and Nextloud to sync things between devices…
Bitwarden, I use it everywhere. I even wrote a Bitwarden app for my Linux phone.
load more comments
(1 replies)
I have been on Bitwarden for about 8 years now. Paid for it about 7 years ago. I LOVE it. I also use KeePassXC On my Linux box and for work - That's a great platform for anything that requires even more security (Work, Security focused websites, etc)
load more comments
(1 replies)
I use pass but recommend Bitwarden when people ask for a recommendation.
When using pass, if you have a lot of devices and forget to sync at times you better know at least basic git lol.
I use pass as well and acknowledge it's not for everyone. For me, the lack of automatic synchronization is a feature though, I don't feel comfortable having all my passwords on my phone in case it gets stolen.
If you don't mind I'm going to re-post my question I asked mori
Do you use pass on any mobile devices & do you find the need to use any of the browser extensions made for it? I am just looking at it right now and it seems really fascinating I will say.
I only ask since I am currently a bitwarden user but I am not against trying something new, and it does look quite interesting. thanks in advance!
Do you use pass on any mobile devices & do you find the need to use any of the browser extensions made for it? I am just looking at it right now and it seems really fascinating I will say.
Mobile apps:
- Android (use daily w/ YubiKey): https://github.com/android-password-store/Android-Password-Store
- IOS (not tried): https://mssun.github.io/passforios/
Browser extension is a bit more complicated as you have to have a helper running for the extension to connect to, but it does exist: https://github.com/browserpass/browserpass-extension
Yes, I use Password Store F-Droid Play Store on a few Android devices. I don't personally feel the need for browser extensions on desktop and just use QtPass.
All in all I use it on 6 devices; 1 desktop, 2 laptops, 2 phones, and 1 tablet. Only ever have "issues" when I forget to sync one for a while and create a password on it.
load more comments
(1 replies)
Maybe a tangent, but what are the security implications of a password manager? It seems like it would replace many individual things that can go kinda wrong with one big single point of failure, which frightens me 😆
Happy to be wrong though. They definitely seem convenient.
This line of reasoning kept me away from password managers for a while, but I've been using Bitwarden for almost a year now, and I could never go back.
You're technically right, but a better way to look at it is that it reduces your surface of attack from many weak points, down to one, very strong and secure point (assuming you use a reasonably strong password for your vault, and don't log into your vault on public networks or anything like that).
But at the end of the day, using a password manager is vastly superior to relying on your memory, which is what many people still do.
load more comments
(1 replies)
A notepad in my closet. Can't hack that
I've been using Bitwarden, but the second proton releases proton pass to the public I'll try to switch
I've started using Bitwarden after two of my coworkers quit to go work at Bitwarden. Really nice interface, and very easy to use
Using Keeper at the moment. I used to use 1password, then moved to Bitwarden. Using keeper now because my employer has licensing to give each employee a personal account and a business account for free. So, basically I'm just taking advantage of that.
load more comments
(3 replies)
self hosted passbolt is very convenient, didn't see more secure alternatives. The only bad thing is that it cannot save TOTPs currently
Have you looked into vaultwarden? That supports TOTPs
I use a self hosted vaultwarden instance! Should probably migrate it to my new server soon-ish though...
Well, ahem, I use index-cards in a box. Never looses batteries - totally hack-proof !
Bitwarden after lastpass started charging for the same service