One downside is that i’ll have no more passkeys. The vault syncing, i can do via SyncThing.

  • Crabhands@lemmy.ml
    link
    fedilink
    arrow-up
    0
    ·
    6 days ago

    I think I’ve done the opposite of most. After using keepassx for the last 4 or 5 years I switched to ProtonPass.

    I value security and privacy but Ive realized some of my processes have become too complex, like using syncthing to keep my keepass on my phone and PC aligned. I’m not confident that older man version of me will be able to keep up so Ive stared valuing simplicity.

    Im sure many will argue that it is simple but between backups and keys and passwords it really is a lot, especially with a new device each time.

    • Hyacin (He/Him)@lemmy.ml
      link
      fedilink
      English
      arrow-up
      0
      ·
      5 days ago

      I think I’ve done the opposite of most. After using keepassx for the last 4 or 5 years I switched to ProtonPass.

      Me three.

      • JumpyWombat@lemmy.ml
        link
        fedilink
        arrow-up
        0
        ·
        4 days ago

        Me four.

        I also realised that the attack surface is much greater with my approach with KeePass compared to simply paying a company whose primary mission is to keep my secrets secret.

        It helps that I’m just a regular paranoid bloke and not a secret agent or something like that.

  • ReversalHatchery@beehaw.org
    link
    fedilink
    arrow-up
    0
    ·
    6 days ago

    Syncthing is fine and secure, but be absolutely sure you set of some kind of file versioning for the shared folder. at least a trashcan versioning, if not better. protects you against accidental deletion

    • Provolone@lemmy.zip
      link
      fedilink
      arrow-up
      0
      ·
      6 days ago

      Something I never fully understood with file versioning is on which side to apply it. The source or the receiving end?

      • Ulrich@feddit.org
        link
        fedilink
        English
        arrow-up
        0
        ·
        edit-2
        5 days ago

        There is no source or receiving end. Syncthing is omnidirectional synchronization. Versioning is applied across all syncs.

      • ReversalHatchery@beehaw.org
        link
        fedilink
        arrow-up
        0
        ·
        6 days ago

        on the receiving end. Syncthing cant act to keep a version before you delete a file locally, but it can move a remotely deleted file to the version control instead of deleting it

  • brunoqc@piefed.ca
    link
    fedilink
    English
    arrow-up
    0
    ·
    6 days ago

    I like that I’m able to use keepassxc as a keyring on Linux. I like that there is a prompt on access so no rogue script can real my whole keyring.

  • Drunk & Root@sh.itjust.works
    link
    fedilink
    arrow-up
    0
    ·
    7 days ago

    i use keepassxc and from protonpass and its great its a lot lot more manuel work but in theory its worth it anything with a internet connection can be hacked

    • floofloof@lemmy.ca
      link
      fedilink
      arrow-up
      0
      ·
      edit-2
      7 days ago

      You’re no more likely to lose keys with KeePass or KeePassXC than with an online password manager, as long as you keep good backups, and maybe sync KeePass to cloud storage.

      • Ulrich@feddit.org
        link
        fedilink
        English
        arrow-up
        0
        ·
        7 days ago

        as long as you keep good backups, and maybe sync KeePass to cloud storage.

        Yes, that’s the caveat. You’re paying for a managed solution so you don’t have to worry about that.

            • swelter_spark@reddthat.com
              link
              fedilink
              English
              arrow-up
              0
              ·
              4 days ago

              All your info is stored in one file, which is automatically encrypted and can be opened by any KeePass-compatible program. If you want to access it on another device, you can use whatever sync/file transfer software you normally use to sync/send it to whatever storage provider you use, or directly to your other device(s). No need to do anything outside your usual routine.

      • OhVenus_Baby@lemmy.ml
        link
        fedilink
        arrow-up
        0
        ·
        edit-2
        5 days ago

        Look I love fully offline concepts just as much as the next person. But what Bitwarden offers me that those other solutions don’t, is to offload some of the mental load long-term. I like privacy but something are exhausting. Pick and choose your battles.

        Less hands on maintenance and mental overhead to keep things synced and all services / files up to date. We bitwarden users have other stuff to do. Different priorities.

        This is one of the things I decided to keep to the people who do this far more and deeper than I ever could. Their job. Their liability.

        All my accounts are encrypted, cloud accessible, or offline accessible. Protected by a giant hash of a master password. It allows me to feel safe and provides the convenience of copy and pasting insane credentials needed in today’s times. Hassle free. Great features. The end.

        *potentially even under free account if you choose.

        • ☂️-@lemmy.ml
          link
          fedilink
          arrow-up
          0
          ·
          edit-2
          5 days ago

          oh, i was expecting bitwarden to be self hosted too. as long as they are trustworthy, i guess it is convenient to be able to pay to get this stuff done for you.

  • salvor_hardin@lemmy.ml
    link
    fedilink
    arrow-up
    0
    ·
    7 days ago

    Any specific reason that makes Proton Pass less secure? I am curious since I am using both pass and bitwarden at the moment. bitwarden for all my logins and pass for alias + their logins.

    • Lfrith@lemmy.ca
      link
      fedilink
      arrow-up
      0
      ·
      7 days ago

      I like that KeePass on PC and Android lets you use an autotype feature if autofill isn’t working instead of using copy paste.

  • PodPerson@lemmy.zip
    link
    fedilink
    English
    arrow-up
    0
    ·
    7 days ago

    I’ve been using Strongbox since 1Password switched to subscription only and it’s been good. It’s based on Keepass and supports all the normal password manager stuff (TOTP, passkeys, etc):

    https://strongboxsafe.com/personal/

    I use the desktop and mobile apps, and keep my vault stored in my iCloud account so everything is always synced real time without relying on a third party cloud (yes, I know I’m still relying on Apple for that).

      • PodPerson@lemmy.zip
        link
        fedilink
        English
        arrow-up
        0
        ·
        7 days ago

        I tried it and just couldn’t get on board with it. Severely lacking in features that I use often. Would have been my preference but it came up short.

  • Pearl@lemmy.ml
    link
    fedilink
    arrow-up
    0
    ·
    7 days ago

    Doesn’t keypass support passkeys?

    As you can see from the thread, this question is divided amongst the cult of “sensible privacy is a thing provided you’re not a criminal” to the cult of “everybody’s on a FEMA/🧊 spreadsheet and they’re working their way down”.

    I’d say make sure you use a separate password for proton pass, it’s an advanced option. You are far more likely to get hacked for your money and password manager goes 97% of the way to defeating those attacks.

    Don’t take your eye off the ball. The real threats to your wallet have always been the shareholders.

  • HubertManne@piefed.social
    link
    fedilink
    English
    arrow-up
    0
    ·
    7 days ago

    personally I use keepass for important things and don’t sue extension or anything that would pull from it and I use bitwarden for unimportant passwords. not that bitwarden is necessarilly unsafe but im a person who ultimately thinks its best I completely control the important things.

  • Curious Canid@lemmy.ca
    link
    fedilink
    English
    arrow-up
    0
    ·
    7 days ago

    It will always be safer to store sensitive information in a system that you control than in a system that someone else controls. KeePass is easy to setup, it’s easy to use, and it provides excellent protection.