But who is running the bitwarden server? Bitwarden the private company.
I self host vault warden, but it’s really not something everyone can do.
saltynuts420@lemm.ee 1 year ago
instead of using a password manager managed by a PRIVATE ENTITY people should start using bitwarden … its opensource, free and much more secure and reliable
forbiddenlake@lemmy.world 1 year ago
InvertedParallax@lemm.ee 1 year ago
Vaultwarden is incredible, and one of the few things I’ve seen that runs easily on freebsd.
bnjmn@lemm.ee 1 year ago
Or should, for that matter
PlexSheep@feddit.de 1 year ago
I prefer local password managers. Synchronisation is achieved with a syncing service of our choice.
anyhow2503@lemmy.world 1 year ago
That’s pretty much what Bitwarden does at its core. It will only synchronize the encrypted password vault and each client keeps an offline copy of it.
RaivoKulli@sopuli.xyz 1 year ago
Bitwarden, the host, is a private entity
itsdavetho@lemmy.world 1 year ago
How does bitwarden encrypt their passwords? Im just realising that since it works on both my laptop and phone with no configuration it can’t be overly nuanced
tony@lemmy.hoyle.me.uk 1 year ago
It’s encrypted on the client and bitwarden themselves can’t decrypt it (we assume, but there have been audits that seemed to confirm that).
If you want to you can just run your own server then they can’t see the traffic at all.
Builtin@lemmy.one 1 year ago
Who’s we? You probably mean you assume. Bitwarden is open source so an assumption need not be made.
Mananasi@feddit.nl 1 year ago
There’s an assumption that the code you see is the code running on their server. And on top of that there’s lots of other software running on their servers.
IverCoder@lemm.ee 1 year ago
Private entities are more reliable for personal data than companies whose stocks have gone public.
A2PKXG@feddit.de 1 year ago
[deleted]gnygnygny@lemm.ee 1 year ago
It’s a crypto donation software
yetAnotherUser@lemmy.ca 1 year ago
I personally use KeepassXD on my phone, although it hasn’t had a security audit. There is also KeepassXC for desktop, which has had an audit