On the topic of password management, what are your recommendations as far as the tools there are out there (password managers, hardware keys, etc.)? And what would you say are the best practices (both phone and pc)?
A bit of a broad topic on purpose as I am not sure exactly where I am going with this, but I know I want to do more research and gather more information. If you have good resources on this, please do share.
Cheers
I use KeePass and Bitwarden.
Self hosted.
On all platforms and synced on all devices, from my own NAS.
Second that. KeePass and you can chose your client
deleted by author
Keepass + syncthing
deleted by author
deleted by author
Good question. I'm interested in getting some input also. I use a fairly lesser known password manager, not open source code, and I'm nervous that it will be the next hack victim.
I can't wait until bitcoin puts an end to all this password crap.
deleted by author
I've been using Bitwarden for a while.
The good thing is that their official server and clients (for desktop and mobile) are open-source.
I am actually running an alternative implementation of the server: https://github.com/dani-garcia/vaultwarden that is less resource-intensive and implements most of the official API: https://github.com/dani-garcia/vaultwarden/wiki#supported-features
Even when running your own server, you can still use the official clients (browser extensions or mobile apps), so you don't have to worry about all the different client implementations in the wild.
Thanks!
What are the tradeoffs of using official clients (browser extensions or mobile apps)?
I don't see any, especially since their code is open-source: https://github.com/bitwarden
deleted by author
deleted by author
I second bitwarden. Been using it for a while.
Been great and really helps out.
deleted by author
deleted by author
https://www.passwordstore.org/
Terminal only
encrypted by gpg key
backed up by a local git repo that you can push anywhere you like.
No centralised service to honeypot you
do you have a way to auto-complete on web browser and to access to your pwd on your phone with this method?
No. It can write to paste buffer with a flag, so the browser workflow is cmd-tab based. I didn't try to solve for the phone
deleted by author
deleted by author
deleted by author
KeePass.
Self hosted.
Automatic backups to external HD.
Manual backups to usb drive.
deleted by author
JESUS CHRIST DON'T USE A PASSWORD MANAGER TO STORE YOUR SEED PHRASE!
Pen and paper only.
Who said we are storing our seed phrase in password managers?
It's implied when you post a password manager ad on a Bitcoin message board.
Not at all.
And denial is a river in Egypt.
deleted by author
deleted by author
deleted by author
deleted by author
I prefer steel
deleted by author
deleted by author
KeePass + Syncthing
deleted by author
Bitwarden, self-hosted (vaultwarden). I strongly recommend it.
deleted by author
Bitwarden
deleted by author
I am the old guy that just remembers passwords. I do have cloaked for generating throwaways though.
deleted by author
Accounts.txt works for me
deleted by author
If you are a command-line enthusiast, check out gopass. Really nice, and uses git to sync across machines.
deleted by author
Used and payed for Bitwarden. But i found it too complicated to self-host IMO.
The best and simplest solution is a combination of KeePass+Syncthing.
Both free, and available for desktop and mobile.
deleted by author
Self-host bitwarden/vaultwarden
deleted by author
https://pyxis.nymag.com/v1/imgs/d6a/dc7/4a5001b7beea096457f480c8808572428b-09-roll-safe.rsquare.w700.jpg
deleted by author
deleted by author
Awesome, thank you for the write-up!
deleted by author
deleted by author
deleted by author