Selfhosting Vaultwarden (Bitwarden)
this post was submitted on 15 Jun 2023
193 points (100.0% liked)
Privacy Guides
17172 readers
3 users here now
In the digital age, protecting your personal information might seem like an impossible task. We’re here to help.
This is a community for sharing news about privacy, posting information about cool privacy tools and services, and getting advice about your privacy journey.
You can subscribe to this community from any Kbin or Lemmy instance:
Check out our website at privacyguides.org before asking your questions here. We've tried answering the common questions and recommendations there!
Want to get involved? The website is open-source on GitHub, and your help would be appreciated!
This community is the "official" Privacy Guides community on Lemmy, which can be verified here. Other "Privacy Guides" communities on other Lemmy servers are not moderated by this team or associated with the website.
Moderation Rules:
- We prefer posting about open-source software whenever possible.
- This is not the place for self-promotion if you are not listed on privacyguides.org. If you want to be listed, make a suggestion on our forum first.
- No soliciting engagement: Don't ask for upvotes, follows, etc.
- Surveys, Fundraising, and Petitions must be pre-approved by the mod team.
- Be civil, no violence, hate speech. Assume people here are posting in good faith.
- Don't repost topics which have already been covered here.
- News posts must be related to privacy and security, and your post title must match the article headline exactly. Do not editorialize titles, you can post your opinions in the post body or a comment.
- Memes/images/video posts that could be summarized as text explanations should not be posted. Infographics and conference talks from reputable sources are acceptable.
- No help vampires: This is not a tech support subreddit, don't abuse our community's willingness to help. Questions related to privacy, security or privacy/security related software and their configurations are acceptable.
- No misinformation: Extraordinary claims must be matched with evidence.
- Do not post about VPNs or cryptocurrencies which are not listed on privacyguides.org. See Rule 2 for info on adding new recommendations to the website.
- General guides or software lists are not permitted. Original sources and research about specific topics are allowed as long as they are high quality and factual. We are not providing a platform for poorly-vetted, out-of-date or conflicting recommendations.
Additional Resources:
- EFF: Surveillance Self-Defense
- Consumer Reports Security Planner
- Jonah Aragon (YouTube)
- r/Privacy
- Big Ass Data Broker Opt-Out List
founded 2 years ago
MODERATORS
KeepassXC on desktop and Strongbox on mobile. Syncing works through any cloud provider of choice
load more comments
(1 replies)
Self hosted Bitwarden out of my house. I bought an old server a while back and it's been running like a champ. The official version s a bit cumbersome, but it seems to work really well. No complaints.
I used to use Dashlane but when I found out bitwarden was free I just started using that
Self hosted vaultwarden for personal use and pass at work.
Keepass and Strongbox.
I don’t like the honeypot that is anything too centralized, even if it is e2e encrypted. I’d be worried about exploits or compromised client payloads.
I just use hunter2 as my password literally everywhere. Otherwise it's easy to forget if you use more than one. I also use Bitwarden to manage all those passwords. It's really easy cuz you only need to type "hunter2" only once when you log in. After that you can just click it.
load more comments
(1 replies)
Bitwarden is the way.
I used KeepassXC and Keepass2Android but the implementation seems a bit janky at times and the need to sync it manually or let it sync via a cloud is not all that comfortable.
I switched to Bitwarden about a month ago and consider it still as a test phase for now. I'm not that happy with just having my passwords lying around on a random cloud server.
You can always self host your bitwarden instance if you want.
For me, bitwarden is a good middle ground, it's super easy to setup, works super well on desktop and android, and it's still way better than using the same 8 character password everywhere. I think it's easier to recommend as a starter to anyone that's not using a password manager.
load more comments
(1 replies)
load more comments
(3 replies)
Dashlane here. I self host a lot and could definitely use Keypass or something locally, but the risk of losing all your passwords if I fuck something up was too great. I'll pay professionals.
load more comments
(1 replies)
I used to use KeePass, but switched to https://www.passwordstore.org with a YubiKey after discovering how janky the KeePass 2FA system is designed a while back.
load more comments
(1 replies)
Enpass, no puplic hosting. Clients in phone and PC. You can use your own services if you want to upload or keep it in a folder on the phone.
load more comments
(2 replies)
Another vote for Bitwarden. Works on everything I use!
I’m entirely in the Apple ecosystem, so I use the built in Keychain, synced across devices through iCloud.
It would be Bitwarden otherwise.
load more comments
(6 replies)
1Password. Wasn't thrilled with their move to electron, but it hasn't been as bad as I feared, and they've earned my trust at this point
Doesn't hurt that my work now uses it, so I get the family plan for free either
KeePassXC and Keepass2Android auto-synced with my Nextcloud instance. Works great cross-platform for Linux/Windows/Android.
I know what you mean, trusting a SaaS provider with my master password list always felt like a bad plan.
1Password is a genuine life saver.
For work I use 1Password, for at home I use Bitwarden.
Bitwarden all the way
I use 1password, I used KeePass for years but it didn't work will on Android so I moved on.
Also using 1Password, works great for what my family needs.
I've been using KeePass and KeePassdroid for at least 10 years now. "Sync" my dB through one drive, only because at one time we were allowed to use our personal one at work, but since they blocked personal folders in favor of corporate ones it is much less handy.
I rolled my own, actually. I don't store any passwords (even encrypted). Instead, I just append the site name to my base password (which is in my head), hash it, and base-52 it. (I also start each password with the same uppercase letter, lowercase letter, punctuation mark, just to ensure it gets past any bullshit filters)
I like that there's nothing that can be leaked (except what's in my head) and nothing to be lost and nothing to back up.
Can you please elaborate on each step. I'm not sure on the hash and base52 - do you use a program you're written to do that for you? A simple example would be fantastic.
load more comments
(2 replies)
That's ingenious.
Can you elaborate on a detail for me?
I understood everything up to "base-52 it."
I understand how converting base-10 to base-52 works, but that doesn't include alphabetical characters. What are you converting from? Are you numbering A=1, B=2, C=3...?
load more comments
(1 replies)
Another happy KeepassXC user here! Keepass2android on Android. I keep the passwords synced with nextcloud
KeepassXC and Keepass2Android
Keepass on OneDrive, so I can access it from my computer and phone.
Bitwarden here too
I've been using keepass on PC and KeepassDX on Android.
I just lead the migration from LastPass to 1Password for the business I work at. It was really prompted by the breaches at LP and their poor handling of it. For personal stuff, I just did whatever I was doing at work because the business plans come with free licenses for personal accounts.
Bitwarden, easily. You can self host if you want to for added privacy. I don't, but the option is there.
Bitwarden user here.