Which free software password manager do you use?
Please share your recommendation. Boost is very appreciated.
Poll
Voting ended 31 Dec 2022 at 8:03.
Ade Malsasa Akbar
Which free software password manager do you use? Please share your recommendation. Boost is very appreciated. Anonymous poll
Poll
KeePass / X / XC
707
48.7%
Bitwarden
501
34.5%
KDE's / GNOME's one
30
2.1%
Other, please comment
1,452 people voted. 214
14.7%
Voting ended 31 Dec 2022 at 8:03. 167 comments
12
tallship
Let me take s moment to ask you... I use .kdbx too - #KeepassDX and #KeepassXC to sync between #Android, desktop, with cloud, using #Syncthing. How do you find compatibility between #VaultWarden and #kdbx in regards to the "notes" section in those #Keepass clients? I thought about doing a migraine, or at least a parallel management of them, but I rely heavily on my "notes" section for many particulars and reminders for my various accounts. Thanks! ⛵
Ange des ténèbres 🐈
@tallship I didn't migrate any data, there is no link between my KeepassXC & Vaultwarden. Anyway, there is also a possibility to add notes in Vaultwarden / Bitwarden, see screen.
Ade Malsasa Akbar
I use #KeePassXC. What about you? KeePassXC - Cross-Platform Password Manager KeePassXC is a modern, secure, and open-source password manager that stores and manages your most sensitive information.
Cédric Jeanneret :blobwave:
@ademalsasa been using it for... errrrr.. don't remember, but the KeePass family is here for over 15y
Zwarf
@ademalsasa KeePassXC in combination with #Syncthing is a dream. You do not need a cloud but all your devices are still synchronized.
Joel :void: :casio:
@zwarf merging databases is also the best thing ever for those super weird cases where a sync conflict file gets made
LovesTha🥧
@ademalsasa I needed something with a real server model so I switched from keepassx to various others things before settling on bitwarden/vaultwardenrs
Zicoxy3
@anedroid @ademalsasa do you use the firefox browser plug-in? For me it fails me a lot to recognize the webs
DELETED
@zicoxy3 @ademalsasa Yeah, especially on banking sites. No other way than copy-paste password or click "fill password" from context menu.
Mr.P
@ademalsasa Also using KeypassXC in combination with an own, private Nextcloud Instance.
Daniel Schier 🐧🍪
@ademalsasa i am using secrets, a Keepass2 Frontend for GNOME: https://flathub.org/apps/details/org.gnome.World.Secrets
Dmitri Ravinoff
@tfkhdyt
Benjamin Kwiecień 🇵🇸
@toxomat @tfkhdyt @ademalsasa I'm surprised pass comes up so often. I'll have to give it another look
Björn
@ademalsasa I use https://passwordstore.org #passwordstore a text file based password manager around #pgp and #git. It scales between one user or many multiple. It also support hardware based encryption if you use pgp smartcard.
Matteo Gratton
@ademalsasa currently, I'm on Dashlane. Since they removed the desktop app for a browser only solution, thought, I am thinking to move away. I admit, I've never took enough time to find a different solution that suits my needs though.
Jogi Homüller
@ademalsasa I've been using Bitwarden for quite some time now and recommend it. The UI works great for me, not only in the laptop browser but also on my phone.
Orok
@ademalsasa I'm using GNOME's password manager even if it's a bit basic. There is this cool GNOME extension which make passwords searchable in the top menubar 🙂 On my phone I'm using KeepassDX (don't know what "DX"stands for though).
Tashen
@ademalsasa I use Apple/iCloud’s built-in password manager. In addition to that I use 1Password, which has been pretty good.
felix (grayscale) 🐺
@ademalsasa
Arda Kılıçdağı
@ademalsasa Bitwarden, but it's actually #vaultwarden ( #bitwarden_rs ), an alternative #bitwarden compatible server written with Rust. https://github.com/dani-garcia/vaultwarden/
PCH🎙️ :wp_fedi: 🪬
@arda @ademalsasa I should probably do VaultWarden but I'm going to be stupid and trust them with my password blob.
Farseen
@ademalsasa we should build a keepass syncing service. Slightly smarter than save it to a folder and get is synced by Drive/Dropbox/Syncthing: * Everytime a DB file is synced it's appended to a list of files.
Steve Slatcher
@ademalsasa I use CryptEdit. It's not exactly a "password manager" - but it can be used to encrypt any text
Robert "Szkodnix"
@ademalsasa@floss.social Personally I use self-hosted Bitwarden. In my work, I use and recommend Keepass to everyone 😉
stib
@ademalsasa the one built in to #Firefox its #FOSS, it synchs across all my devices and the company behind it isn't making a profit from their users.
kacp
@ademalsasa i use pass with passf firefox extention but the extention is kinda mid since it doesn’t have a function to automatically add passwords to the password store when creating new account/signing in for the first time and i have to add every passwords manually
Joel :void: :casio:
@kacp I just use rofi-pass instead, which works everywhere and I find it better than other pass plugins. I do use keepassxc most of the time tho
Scott Williams 🐧
@deblan @ademalsasa I used to use Passman in Nextcloud, but switched to KeePassXC (but still use Nextcloud to sync it between my devices).
James Pearson :sway: :xfce:
@ademalsasa I use password-store, by zx2c4.
Princess Serena Star
@ademalsasa I just use Firefox's. Probably not the best but it works and I haven't been willing to put in the effort to switch to something else.
¯\_(ツ)_/¯ :mastodoncertified:
@ademalsasa
RedCyberLizzie
@ademalsasa honestly, I don't use a password manager. I have tiers of passwords I use for different levels of importance on accounts, such as accounts for banking, accounts that have my credit card attached, my main email. That all have their own tiers of passwords based on their importance. And if one site gets compromised and my password for a tier gets leaked, I just reset password on that tier, and login to my email with the password I made just for it, and change em all.
Twelve :GrapheneOS:
@ademalsasa
Ade Malsasa Akbar
@dd0ul hello, I'm an avid KDE user and it's very nice to find a KDE Kwallet user here. Greetings and thanks for your recommendation.
curtmack
@ademalsasa I use KeePassXC for my personal passwords, because it's easy to sync with my phone. I use pass (the standard Unix password manager) for my work passwords, because it's easy to back up and rewind changes thanks to its Git integration.
DJ7NT (Joerg)
@ademalsasa @df4or gibts auch zusätzlich als App für iOS und droid. Opensource, selber zu hosten, crypto transparent per gpg. Was will man mehr?
ruff
@ademalsasa keepassxc, because it supports secrets api so can act as drop-in replacement for gnome's gkr.
Alex Volkov
@ademalsasa I use firefox password manager. It’s nice, it let me sync between my desktop, iphone and ipad easily.
edmonde
@avolkov @ademalsasa I used lockwise, which was their password manager until last year, when they discontinued it with a rather quiet memo. I had to switch to #lastpass (damn) and stopped using Firefox altogether. Now I'm setting #keepassxc up and it works just fine after a few adjustments.
Carl Schwan :kde:
@ademalsasa firefox pass, it's already on all my devices and it works without issues
chrysn
@newsorpigal @ademalsasa Also GPG encrypted text files. I recently learned that that is precisely pass's file format -- so maybe I'll swich between vim and pass as tools.
hax 📡
@ademalsasa As I use password managers for different contexts, I need a federated password manager.
Marc Kaulisch
@ademalsasa #SpectreApp i use Spectre.app as pw generator - that is a cool solution- a bit complicated but good. I store the pw in another place…
Flexi Bell :vf:
@ademalsasa None! https://fractionalciso.com/correct-horse-battery-staple-review/
D. Moonfire
@ademalsasa Bitwarden because I can self host if I need and I use organizations to share with three different families.
MacLemon
@ademalsasa This poll doesn’t allow to select multiple answers so it will result in a skewed result. (Disregarding there there already suggestive answer selection bias.) I use multiple solutions for different use cases, because they are all terribly unusable for one or another case which causes them to become an absolute no-go in certain scenarios. *Mostly* but not exclusively related to terrible UI/UX.
Ade Malsasa Akbar
This is great. My friend @ManjaroARM helps boosted my poll about Password Manager. See above. Thank you, Manjaro ARM.
ar :prideified:
@ademalsasa I voted bitwarden, but I actually use self-hosted vaultwarden on the server side
nSonic
@ademalsasa @SpaceGeek Enpass - was an easy switch from 1Password when they changed their product to „our cloud only“ With Enpass I was able to import 1pswd data and have the choice to only sync locally or via iCloud if I like.
Steve
@ademalsasa One factor to consider when choosing a password manager is the worst case scenario should they suddenly go offline never to return. Can you easily migrate to an alternative password manager? With keepassXC and Bitwarden you can export while offline. With some of the others you may suddenly lose everything if you don't have a backup.
satmd
@ademalsasa pass - because of the generality of tools involved. just clever integration of git and gpg.
Vera :bike_verified:
@ademalsasa Pass in Linux and Password Store on Android, synced over GitHub. KeePass separately on my Windows Laptop from work.
Badeline (nicole)
@ademalsasa I use passwordstore, that bash-script thingie that utilizes gpg for password encryption and can use git for distribution. now if git worked properly on android phones (there was some filesystem shenannigans last time I checked) I might be able to recommend it to people who need their passwords on there, but at least it works with my use case.
Remsd1
@uniporn @ademalsasa Indeed, I think it lacks android/ios support and a group/permissions management (e.g. check teampass group features), otherwise that would be a perfect password manager.
Ade Malsasa Akbar
Ombligoelemento
@ademalsasa iCloud Keychain. I can use it both on iOS and MacOS and works extremely fast on Safari. If I ever get out of the Apple ecosystem, I'd go for Bitwarden since I already took a look at it and seems pretty robust and easy to use daily.
Stefan 📷
@ademalsasa sry, didn‘t recognize the „free“. But well… answered the poll, so I have tu comment.
poeschel
https://www.passwordstore.org/ is my way to go. I like it very much.
TheYOSH
Using Enpass https://www.enpass.io/ Main reason is that I can use my own Nextcloud server as cloud service and share between desktops.
Kimimaru
@ademalsasa KeePassXC with Syncthing. I prefer KeePassXC because it's entirely local and I can use it on any device.
Nico Rikken
@Kimimaru
edmonde
@nicorikken @Kimimaru @ademalsasa the only problem I found with #keep2Android is that I have to choose the same passwords file everytime I modify it in my computer, and now the "choose file" screen is full of versions of the same file, although I only have one in its folder.
Kimimaru
@edmonde @nicorikken @ademalsasa On Android I use KeePassDX which is different from Keep2Android: https://f-droid.org/packages/com.kunzisoft.keepass.libre/
HRH ginsterbusch
@ademalsasa Its called encrypted text file and copy + paste. Very basic, but also very safe. And not global across the world, esp. not on somebody elses server. One switches to such measurements when having their phones stolen once or twice. The panic and nearby heart attack of having to change passwords and access options directly after, because "it was on the phone, all on the phone!!2123" is something one wants to not go through again, like .. EVER.
HRH ginsterbusch
@ademalsasa And if I want passwords stored on a mobile device (read: smartphone), its usually NOT any important ones. If I cant remember them? Guess I'm unlucky.
edmonde
@Doktor_S @ademalsasa hmm... You discovered me fritter and I couldn't be happier. Now I don't need to use that horrible app anymore. Thanks a lot!
Krzysztof Jeziorny
@ademalsasa I used to sync a Keepass file between devices, but my syncing method (ownCloud clients) wasn’t completely waterproof and in the long run I switched recently to @bitwarden. Very happy with it.
Cosmin
@ademalsasa I'm using KeePassXC on my laptop, in sync with KeePassDX on Android via Nextcloud. Before that I used Bitwarden, but then I wanted the Android app and didn't find it on F-Droid. The reason was that it was difficult to build because it was made with some Microsoft tech. That disgusted me so much and I also couldn't trust Bitwarden with my passwords anymore, because I thought if they used Microsoft tech they must be amateurs, so I migrated away from it.
R. L. Dane :debian: :openbsd:
That's a bummer. I wonder what MS tech it's built on. It can't be *that* hard to replace a box of crayons. ;)
Cosmin
@RL_Dane
R. L. Dane :debian: :openbsd:
@cosmin @ademalsasa Shilling came full circle :P |
@ademalsasa In fact, I use 2 password managers :
- KeepassXC for personal use
- Vaultwarden linked to Bitwarden client for in our association