Rootiest

joined 1 year ago
[–] [email protected] 0 points 1 year ago (2 children)

and there even is a „no phoning home“ version that strictly runs locally.

Shouldn't that be all the versions?

Why would a password manager app that uses a local database need to phone home?

[–] [email protected] 19 points 1 year ago* (last edited 1 year ago) (13 children)

I have both set up right now.

Things I like better about KeePass:

KeePass doesn't use the cloud, you don't have to worry about the server getting compromised or going down because there's nothing public-facing to hack. You always know where your password database is.

KeePass lets you encrypt the database with not only the master password but also using the challenge-response from a YubiKey. That means every time you save your DB the encryption key is rotated and the DB is actually encrypted by two authentication factors.

While both can add custom fields to an entry, I like that KeePass has the option to set fields as protected so their contents are hidden like the passwords.

Things I like better about VaultWarden:

Convenience.

You can log in to your VaultWarden account on any device from the browser. KeePass requires some software to access the DB.

The VaultWarden companion software is just better. It just does autofill better. KeePassXC/DX work well but just not as well as the BitWarden software.

Other thoughts:

Syncing passwords between devices with KeePass requires 3rd party software like SyncThing. If you break/lose/etc your VaultWarden server you could lose all your passwords with it.

Always make/test backups.

[–] [email protected] 34 points 1 year ago

I suspect cigarettes generated a lot more litter but with a lot less precious metals in it

[–] [email protected] 1 points 1 year ago

Yeah this is probably my biggest.

Device which things can be hosted on a local server and which are best on a vps

[–] [email protected] 2 points 1 year ago

But where is the safe huh?

See? Gottem

[–] [email protected] 1 points 1 year ago (2 children)

I didn't mean after you logged in... I meant as the default login option to a new Linux box.

Ah ok. I misunderstood.

As to the other bit, Google hasn't disallowed passwords and I don't think we're at a point where they would.

But I mean ideally you have multiple PassKeys so if you lose one or you computer/phone dies you have a backup.

I keep a hardware key in a safe that can be used as a backup key to my accounts

[–] [email protected] 6 points 1 year ago* (last edited 1 year ago) (4 children)

PassKeys work on Linux.. you just need to use a compatible browser which is most these days.

It's also a fido standard so it isn't really a Google thing, Apple started using them before Google even.

[–] [email protected] 1 points 1 year ago* (last edited 1 year ago)

Ah yes, the elusive fruit poop

[–] [email protected] 2 points 1 year ago

Which character are you going to change?

[–] [email protected] 5 points 1 year ago* (last edited 1 year ago)

Go for it!

I generated it in KeePass for this comment and actually interestingly it looks like Lemmy butchered/sanitized/modified it as well

[–] [email protected] 5 points 1 year ago (1 children)

Probably dodged a bullet if they are that uptight lol

view more: ‹ prev next ›