2023 was a record-breaking year for cybersecurity in a bad way. Ransomware payments hit a record high of $1.1 billion, which is likely to…
You must log in or register to comment.
Still using KeepassXC on desktop and laptop and KeePassDX on mobile.
This is exactly my setup. How did you know? LOL.
File synchronized with Syncthing? :)
I use Bitwarden for passwords. Just works so well.
KeepassXC and KeePassium for TOTP codes. I keep the database in the cloud but sync a key with Syncthing that’s needed to unlock the database on the devices themselves.
Locally hosted bitwarden (vault warden) that is only accessible on your local network is the way to go. When a new sync is needed away from home, wireguard VPN to connect back in makes everything nice and secure. Otherwise most of the time the vault is cached to the device locally so you don’t need to phone home to access passwords.
Exactly my setup
My setup
I do it exactly like that, except that im connected via vpn most of the time, since my pihole is also located in my lan
KeepassXC & Syncthing
And I do keepassdx on Android, with a (phone-specific) database synced with syncthing
P.S. syncthing is fantastic: I hope more people consider hosting discovery servers and especially relays
Syncthing is so good!
I’ve been using Proton Pass since it launched and I think it’s really really good.
Positives:
- Nice integration with both desktop and mobile
- Integrated in the proton suite, which I was already using
- Allows you to generate an email alias for each login automatically. Websites will never have your real email and you can easily generate a new alias if one has been compromised
- Supports 2 factor authentication via TOTP, works really well
Negatives:
- No passkey support yet
- Free version only supports like 5 email alias
If you are into the command line, pass is also neat. You can even have your keys in a git repo and access it with a FOSS Android app (requires some dedication to set it up). It’s very useful to feed passwords to scripts without hardcoding them in the source.
I use keepass with my database on onedrive.
Then i connect every device to said onedrive account, copy the private key manually on each device that i need to use.
I secure my databse with said private key + a passphrase.
Might not be the best setup, but i feel like with passphrase+key i am secure enough to have the db file in the cloud.
you could encrypt onedrive with cryptomator
KeePass for me. I keep my encrypted vault in my 2 factor encrypted gdrive. Get the best of both worlds. No traditional cloud that’s a target for hackers and I have passes I can share across devices.
No love for Nextcloud Passwords or Passman? Both have plugins for Nextcloud and have Android Apps.
No love for Nextcloud
Pretty much in general for me now. I gave it an honest go for six years but there were at least four instances where a server upgrade required nontrivial intervention to bring it back.
Syncthing + Keepass[DX] has been solid for me.
Yes! Been using it for a long time now! Never had any (major) issues!
For Keepass users: KeepassXC can read your keepass file just fine, but KeepassXC can also run on Linux, whereas Keepass runs only on Windows.
KeepassXC with Yubikey
Ah, I suppose it’s TOTP/HOTP or HMAC challenge.
I am waiting for FIDO2 to work between keepassxc and yubikey. 🥳
I love Dashlane, someone tell me why it’s bad.
Aslo more expensive than Bitwarden for example, should u want to pay for premium.
I know they recently published the code for their clients, so that’s a plus. But I can’t find any independent audits for their architecture or clients.
While all mentioned options does have independent audits done.
I really enjoy 1Password for easy vault sharing between family members. I was able to get my (not so technically literate) siblings and dad onto my family plan. Baby steps!
Any reason why Keeper isn’t on the list? Is it bad?
Pass (Password Store)
No mention of Enpass? Stores more than just passwords, can be synced locally over wifi or in the cloud without using Enpass servers.
It’s not open source and they haven’t had a security audit in a while AFAIK, I used to use it too but migrated to Proton Pass for these reasons https://discussion.enpass.io/index.php?/topic/404-security-audit/page/6/
Been using Enpass for something like a decade and it’s been perfect. One time licenses can be found on stacksocial, I think.
