I made a chart to help choose a password manager. Please mind the clunkiness, I made it on mobile
I made a chart to help choose a password manager. Please mind the clunkiness, I made it on mobile
72 comments
-
You can also selfhost bitwarden/vaultwarden for even better privacy.
-
Correct, IMHO go the vaultwarden route. Bitwarden self hosting seems finicky with multiple containers running together in a stack. Vaultwarden accomplishes this with a single container and a single bind mount.
As far as I can tell there is no difference between the two from a user point of view.
-
Agreed.
-
-
I do this too. On a vm hosted somewhere with an encrypted filesystem and only accessible from my home IP. If I need a password while on the way I use my VPN.
-
Your able to connect the official app to your local IP? Always get some certification errors.
-
Yeahhh. As your error implies, you need a valid certificate !
You can host your own CA and create your own rootCA, IntermediateCA and sign your certificate with those !
Add your IntermediateCA into the trust store of all your devices and use a reverse proxy of your choice to serve your services with your own domain (vaultwarden.home.lab).
-
Gotta use a domain name with a valid SSL cert on it.
-
-
You can even access your passwords if your server is offline. You just can't add new entries !!
-
If your vault is locked on your phone for example it needs to contact the server. But granted, most of the time it is not needed.
-
-
I'm actually hosting it public-facing, because in theory, gaining access to the VM and the vault shoult be unproblematic - since the vault is only decrypted client-side
-
Agreed, but I like the extra layer.
-
-
-
72 comments