lol that’s what i used before i switched to bitwarden-- didn’t have any complaints, but the database key file thing was kind of a pain
Comment on Concerns Raised Over Bitwarden Moving Further Away From Open-Source
ChillPill@lemmy.world 1 year agoKeepass? No cross device support, you need to manage that yourself through something like Google Drive…
solsangraal@lemmy.zip 1 year ago
Marthirial@lemmy.world 1 year ago
Agh, gross.
ilmagico@lemmy.world 1 year ago
What do you mean “no cross device support”? KeePassXC supports Win, Mac, Linux and there are iOS and Android apps available…
As for the lack of cloud and requirement to provide your own synchronization, for some (like me) that’s a feature, not a limitation :)
hedgehog@ttrpg.network 1 year ago
Do any of the iOS or Android apps support passkeys? I looked into this a couple days ago and didn’t find any that did. (KeePassXC does.)
ilmagico@lemmy.world 1 year ago
From a quick search, Keepass2Android doesn’t have it, not clear if they’re working on it: github.com/PhilippC/keepass2android/issues/2099
KeePassDX similarly has an open issue, not clean when/if it will be implemented: github.com/Kunzisoft/KeePassDX/issues/1421
Good to know about Strongbox on iOS, though I’m on android so no bueno for me.
anamethatisnt@lemmy.world 1 year ago
Keepass2Android doesn’t have it yet, but seems to be working on it
github.com/PhilippC/keepass2android/issues/2099
Strongbox seem to have their implementation done for iPhone
strongboxsafe.com/updates/passkeys/
ilmagico@lemmy.world 1 year ago
I don’t use passkeys so I don’t know. Maybe I should research into passkeys, what’s the benefit over plain on (long, randomly generated) passwords?
jqubed@lemmy.world 1 year ago
I’m no expert in this but the passkeys really on some sort of public key, cryptographic pair. Your device will only send your encrypted cryptographic secret when it gets the correct encrypted cryptographic secret from the destination. This makes it much harder to steal credentials with a fake website or other service.
ilmagico@lemmy.world 1 year ago
Ok, from a quick search, it seems passkeys rely on some trusted entity (your browser, OS, …) to authenticate you, so, yeah, I’m not sure if Ilike that. The FIDO alliance website is all about how easy, convenient and secure passkeys are, and nothing about how they actually work under the hood, which is another red flag for me.
I’ll stick to old-fashioned, long, secure, randomly generated passwords, thanks.