I haven't seen it mentioned here so I'll throw it out there - 1Password. It's just a very smooth experience that I really appreciate.
this post was submitted on 11 Feb 2025
38 points (95.2% liked)
Privacy
33553 readers
493 users here now
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
- Don't promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
much thanks to @gary_host_laptop for the logo design :)
founded 5 years ago
MODERATORS
I also use Unix pass and self host a git repo over Tailscale to keep it synced across devices. Works like a charm so long as I remember to push whenever I edit a password somewhere.
Bitwarden is excellent and the paid plan is very reasonable unlike with others.
For native sync, the two good and reputable alternatives are Bitwarden and Proton Pass
2nding the Bitwarden, absolutely love it. I moved from LastPass years ago and never looked back.
Proton pass if general UX and speed are important to you. Bitwarden if amount of features is important to you
Bitwarden
Bitwarden.
My recommendation: Don't use Vaultwarden (self hostable server side of bitwarden. Really easy to run and use). Why? You're not a security personal, and securing your vault isn't your job. You might do a slight mistake that'll lead to the compromise of your vault.
The people at Bitwarden have their work dedicated to securing the vaults and all they do is security. And they'll probably do it better then you. When it comes to serious matter, I prefer to trust the professionals.
Doesn't the server just hold an encrypted vault? What could go wrong when the server is compromised? Just thinking out loud I don't know the answer
I just don't want any unauthorized persons anywhere near my vaults in general. I also see my vault as a critical service that requires high availability, and I know enough about system administration to know that my network and I are not qualified to provide that.
Security is also about backups. 3 Replicas 2 Formats 1 Offsite location
Yep, that's right. In theory you could share the encrypted DB with the public and not degrade security. (Still don't do that though...)
Have you tried syncthing? It works great with keepassxc.
Vaultwarden is pretty easy to self host.
+1 for Keepass + Syncthing. Free, no cloud, always synced.
Yeah this is me. It's been just perfect for many years now.
This is faultless for me
Which one? Or both?
Good thing the KeepassXC can be used as a 2nd factor authenticator, though it has TOTP only, doesn't offer HOTP.
KeePassXC. Despite a lot of room for improvement, overall it is pretty powerful & you don't have to host a server. You can also sync your password file to cloud storage. With VaultWarden, it will store a cache of your passwords on your phone but you wont' be able to update them away from home unless you also setup port forwarding, dynamic DNS, web server & all that.
Vaultwarden works really well for me.
Keepass2android should be able to handle nextcloud sync from within the app so that might work better than on device sync. If your done with keepass bitwarden or proton pass are common alternatives
If you're on Android I had seen a better UX for synching with the client Keepass2droid than with KeepassXC or KeepassDX.
On iOS maybe try Keepassium.
KeePassXC doesn't have an official client, does it? Also, KeePassDX has a better UI IMO, is updated much more frequently & is on Fdroid.
I was sure that KeePassXC had an Android client but it seems like my memory tricked me. I do prefer the overall UX of KeePassDX but when I tried several Android KeePass clients during the pandemic I remember that KePass2Droid had an easier Nextcloud sync setup than what KeePassDX offered.
I do the exact same thing as OP with KeepassDX at work and works pretty nice so far, since I gave KeepassDX the right acces rights on the nextxloud directory.
What diferences have you figured out so far with Keepass2android in comparison ?
Easier to setup sync for noobs, however this was years ago maybe it has changed since on DX