Just wondered what people are using for their password management.
I’m currently using 1Password on a family subscription for both password management and 2FA (and then Authy for the 1Password 2FA). But I’m seeing a lot more posters — particularly since joining Lemmy — championing BitWarden (either cloud or self hosted) and Raivo OTP as a cheaper, almost-as-functional alternative.
So is it worth the switch? Will I lose out on anything by doing so?
I’m currently running BitWarden with a free account to see if I can live with it. But I must admit, 1Password is a staple app for me and one that I would say is priceless to my workflow and setup.
Just interested in your thoughts and trying to stimulate conversation!
Bitwarden.
I used to have 1PW, but their browser plugin just completely stopped working for me (and a lot of others).
Then I switched to BW. It has so much better UI, plugins and apps. Oh and it’s cheaper.
And if you want, you can host it yourself
Bitwarden is open source (https://github.com/bitwarden) and was audited by privacytools.io, so I’m in team bitwarden !
It is perfectly integrated with all my devices and browsers, and it’s free to use.
Been using Bitwarden for some time. Really like it.
If to choose it will be Keepass 🙂
Jup bitwarden is pretty awesome! I use a self hosted vaultwarden. You can link it with the bitwarden browser extensions.
Question for you since you mentioned how it’s integrated with all your devices. I currently do not use a PW manager (I know, shame on me). Let’s say I get bitwarden, do I need to go back and change every password on every website to the bitwarden-generated password?
It just seems like I’m “In too deep” in a way where it’ll be a pain in the ass to set up.
If you have stored your credentials in your browser, you can export them to Bitwarden. It’s fairly easy and will save you a lot of time.
The point of using Bitwarden (or any password manager) is that you have no idea what your password is. From a security pov you « should » update your credentials but no need to rush, one step a time 👍🏼
Are you forced to? No. Should you anyway? Yes. I did what @else@lemmy.fmhy.ml said: just change them when you login. That way it doesn’t feel like a grand undertaking, and you still end up with extremely secure passwords that you don’t have to remember.
Also, i recommend generating your master password. If my senior mom staring down the barrel of alzheimers can remember a 12-digit string of random characters (after emptying out all the space wasted by a few dozen passwords), you can too
Odd seeing so many people prefer Bitwarden specifically for the polish and UI. Those are the reasons I chose 1Password. Both work! Both are actually pretty good solutions. But after using Bitwarden for quite a while for work, I set up 1Pass for my personal stuff. It’s just nicer and easier to manage, imo, even as a tech savvy user.
And this is why I love places like Lemmy. Balanced, different opinions 🙂
I personally have no issues with 1Password (except that v8 is Electron), but just tempted to try the alternatives given how strong a following Bitwarden appears to have.
Either way… it’s good to have options.
This is also my experience with Bitwarden and 1Password.
I used Bitwarden for a long time and even selfhosted it, but it just didn’t feel that polished, especially on the phone. Then I tried 1Password and everything just works seamlessly.
In the end, I think it’s just a matter of taste.
Keepass > Bitwarden > 1Password
Keepass, Keepass2Android and Syncthing to share between devices.
You’re all awesome. So much feedback for me to work with.
I’d say the vast majority are recommending Bitwarden (or Vaultwarden should I want to self host), with lots of shoutouts for 1Password as well. Honourable mentions for KeePass as well as a few others.
I’ll continue to run Bitwarden in parallel to 1Password for a little while longer to see if I prefer one over the other. I’ll definitely look into self hosting it as well, although I don’t currently have a domain name so would either have to get one or do the slightly more convoluted method of getting self-signed certificates.
Thanks all for taking the time to indulge me — very much appreciated.
I’m using bitwarden. The free version has everything I need, but I pay for the premium because I want them to continue.
keepass
Bitwarden with a free account here, and it does everything I need it to do (and more than I’d expect for free). Between the app on my phone and browser addons/extensions on PC, I honestly don’t know what else I’d personally need from it (or any other password manager). Plus, it’s open source.
Another vote for Bitwarden
I do think 1Password is a bit more polished than Bitwarden, and auto-fills more reliably for me (depending on the website, of course). I use 1Password for work, but choose Bitwarden for personal use because I value an open-source solution that I COULD self-host if I wanted to. I don’t self-host, because I’m lazy, but I COULD if I wanted to. It’s also a very cheap family plan compared to 1Password, I’m still trying to convince all my old people to use a damn password manager! But one could argue that using 1Password’s more polished interface instead of Bitwarden might make my life easier…
Haha I hear you re: the old people. My parents use a notepad, and they scribble out old passwords and write down the new ones. It’s beyond archaic. And my dad has dementia which is just a recipe for disaster.
I’ve added them to my 1Password family and setup a separate vault for them to use, and I have a few of their key passwords shared with my vault in case they lock themselves out of important accounts.
But I’m sure if I did decide to switch to Bitwarden I could move them over pretty easily.
Right, that’s the beauty of using a GOOD password manager, whether it’s Bitwarden or 1Password. They both make it relatively easy to export and import all your passwords.
My mom took to it pretty easily, but then again, someone changed her Amazon password and it took ages for her to convince Amazon to unlock her account, so she was pretty motivated to take steps to prevent something like that from happening again.
Ive used both, Bitwarden feels more mature plus it’s open source. But 1Password is probably more user friendly for less tech savvy people.
Thanks. I’m tech savvy so that’s not a problem. Just always used 1Password based on recommendations. More than happy to go open source, and 1Password 8 feels like a step backwards from 1Password 7.
Just out of curiosity, why exactly is it a step back? I’ve heard this comment several times but, having only used 1Password 8 (which I quite like), I have nothing to compare it to.
Because it’s now an Electron app on macOS and — in my personal view — Electron apps suck. Much prefer native apps.
Functionality-wise it’s the same, but just doesn’t feel as nice to use, if that makes sense.
What’s the problem with Electron apps?
It’s personal preference of course. This article may explain it better than I ever could (might not be the best source, was just a quick DDG search).
I’ve never understood those problems. I’m not saying they don’t exist, I haven’t investigated it or anything lol, but I don’t see why individual non-electron programs have less overhead than individual electron programs when the argument is that multiple would-be electron apps could share one browser instance because multiple non-electron apps also don’t share anything.
Also I don’t see how not using a chromium base would make programs better about having massive 1 GB directories of various temp files.
What am I missing? Because clearly those problems exist.
I can’t say I fully understand the ins and outs of it because, like you, I’ve never looked into it in any great detail.
I’ve used VS Code for a while and I remember seeing a post on Reddit about how good it is “for an Electron app”, which raised my interest. I then saw more and more complaints about Electron apps, mainly around how they consume a lot of resource and ultimately crash peoples machines, resulting in data loss.
Don’t get me wrong, I see the benefits of Electron apps — they’re easy to deploy across multiple OSes which makes things a lot easier for developers. But I guess as a macOS user, I do love a native app for its look and feel and user experience. Not knocking that on all Electron apps, it’s just a preference.
KeePass for me. I manage my own database, don’t rely on clouds and etc.
Another vote for Bitwarden
KeepassXC, synced with Nextcloud to all my devices. Browser plugins and android app. Diceware master pass phrase.
