IMO Keepass and Bitwarden aren’t exactly the same, as the latter has cross-device sync built-in.
Comment on Bitwarden 100% price increase
Asetru@feddit.org 2 months agoKeepass is free?
BlackEco@lemmy.blackeco.com 2 months ago
lagoon8622@sh.itjust.works 2 months ago
I use one for work and the other for personal. They are both great, with slightly different convenience/security tradeoffs imo. Big fan of both, don’t know why it has to be one or the other for an OSS credentials manager
lastweakness@lemmy.world 2 months ago
I can’t think of a reason to choose Keepass over Vaultwarden.
pulsewidth@lemmy.world 2 months ago
The person you’re replying to already gave you one: it’s free.
Second: its not a prime target for attack like centralized, hosted webservices are. See: LastPass being cracked and people’s login data stolen… Twice.
Yes, it is cryptographically superior to LastPass, and attempts to design around their flaws - but the threat still exists because its a very tasty target on the open internet for cybercrime.
My little Keepass DB synched over personal VPN by Syncthing? Much harder to find a vector for attack. But it does require more moving parts and maintenance.
Each have their pros and cons.
chris@l.roofo.cc 2 months ago
I think you misread. Lastweakness was talking about Vaultwarden which is a 100% FOSS reimplementation of bitwarden that you self host.
callmemagnus@lemmy.world 2 months ago
Vaultwarden is open source: github.com/dani-garcia/vaultwarden
lastweakness@lemmy.world 2 months ago
Every pro you listed is applicable to Vaultwarden as well. But I assume you misread it as Bitwarden.
halcyoncmdr@piefed.social 2 months ago
Vaultwarden, self-hosted is free as well. And since it’s not using the Bitwarden infrastructure, you’re only as exposed as your own network anyway.
But you can still use all the standard Bitwarden apps and extensions on any device, you just need to point it at your server. Easy to set up for friends and family as well. No need to try and teach them about VPNs, setting up syncthing, etc.
Mihies@programming.dev 2 months ago
I can.
lastweakness@lemmy.world 2 months ago
I realise now that I can think of one too. Which is that you don’t need to host it anywhere if you use something like Syncthing.
Mihies@programming.dev 2 months ago
Also available offline, all the time in your hands.
lyralycan@sh.itjust.works 2 months ago
I set up a simple sync service with FolderSync (similar to Syncthing) on Android for my family, that preserves their mobile files on a server hosted SMB share. You can’t underestimate a simple yet effective solution, sometimes so simple it flies under the radar.
john_t@piefed.ee 2 months ago
If you can’t selfhost, then you can have your keepass file in your personal cloud. Many basic cloud services are free and the password file itself is encrypted so the cloud provider can’t access your passwords.
Telodzrum@lemmy.world 2 months ago
I can’t think of a reason to choose Bit/Vaultwarden over Keepass.
terabyterex@lemmy.world 2 months ago
so is bitwarden. i dont get your argument here. bitwarden does a lot more for free than keepass
Sunspear@piefed.social 2 months ago
Thing is, a large percentage of internet-connected users might have two or more devices. The simplicity offered by a cloud (be it hosted or selfhosted) password manager is a huge benefit.
And unless you’re already running a syncthing-like service for something else, setting it up just for a password manager when other services provide it out of the box, is not worth the hassle usually.
unexposedhazard@discuss.tchncs.de 2 months ago
Everyone has some kind of cloud service tho no? The database is encrypted so you can even sync it over googles cloud if you dont have nextcloud or syncthing.
Passerby6497@lemmy.world 2 months ago
Ok, so I just need to keep track of my encryption keys (or have a second complex and secure password to memorize), manually decrypt my vault to use it, re-encrypt it when I’m done, and ensure I have good backups?
EZPZ /s
unexposedhazard@discuss.tchncs.de 2 months ago
What? I think you dont know how this works. The database of a password manager is an encrypted file. When you open your password manager and type in the master password it opens that file and decrypts its contents for you and only saves it to memory. It doesnt actually decrypt the file on the drive. When you close the application it doesnt need to be encrypted again. This is exatly the same for all password managers, the only difference is that with web based ones the database sits on bitwardens server instead of on your harddrive.