Open Source

28952 readers

397 users here now

All about open source! Feel free to ask questions, and share news, and interesting stuff!

Useful Links

Rules

Posts must be relevant to the open source ideology
No NSFW content
No hate speech, bigotry, etc

Related Communities

Community icon from opensource.org, but we are not affiliated with them.

founded 4 years ago

MODERATORS

[email protected]

How do you handle your passwords? (beehaw.org)

submitted 2 months ago by [email protected] to c/[email protected]

62 comments fedilink hide all child comments

I rely on Bitwarden (slooowly migrating from... a spreadsheet...) and am thinking of keeping a master backup to be SyncThing-synchronized across all my devices, but I'm not sure of how to secure the SyncThing-synchronized files' local access if any one of my Windows or Android units got stolen and somehow cracked into or something. I'm curious about how others handle theirs. Thanks in advance for sharing!

(page 2) 13 comments

sorted by: hot top controversial new old

[–] [email protected] 1 points 1 month ago

I've set up Vaultwarden as I used Bitwarden before that and it made switching very easy. Doesn't get easier than that, synced passwords across all your devices/browsers.

[–] [email protected] 1 points 2 months ago (1 children)

I was using Bitwarden up until I moved my email service to Proton. Now, I just use all their things, but I didn't have any issues with Bitwarden personal. I do have some issues with their organization accounts though.

[–] [email protected] 1 points 2 months ago* (last edited 2 months ago) (1 children)

I do have some issues with their organization accounts though.

Like what? And is Proton Pass open-source?

[–] [email protected] 1 points 2 months ago

Just management things, they don't do nested permissions, removed the ability to have groups auto added to collections and the desktop app has been broken for creating new entries in an organization because it can't for some reason it can't see collections, but that's something that broke in an update and they just haven't fixed for a few versions.

[–] [email protected] 1 points 2 months ago (2 children)

Proton Pass. If you're comfortable with cloud E2EE managers, it's far more worth it than Bitwarden, since you get unlimited email aliases. Better for privacy and even security. Plus, I trust Proton, they have a phenomenal track record in terms of security and encryption.

load more comments (2 replies)

[–] [email protected] 0 points 2 months ago

I'm agnostic about password managers, and I'm agnostic about sync'ing password repositories between devices. I believe there would be grave risks of losing access to my own repositories by misplacing their pass-phrases or bungling other kinds of authentication. I try not to put anything on portable devices that is super confidential. On the other hand, I restrict physical access to my desktop computer. I back it up continually, power it from an uninterruptible power supply, and run only a handful of server-side processes there. ... so I feel safe ... sort of.

I suppose it may seem heretical to members of this community, but I put all my passwords in a plain-text *.csv file on my desktop machine that I maintain with my own python script.

[–] [email protected] -1 points 2 months ago (5 children)

passwords.txt on a full-disk encryption HDD.

load more comments (5 replies)

load more comments