Skip Navigation
1K comments
  • What are your thoughts on password managers?

    They are mandatory in current digital age.

    Do you use one?

    Yes. Bitwarden.

    Would you recommend it to others?

    Already do and most are receptive to it once you show them that every single one of them were caught up in a breach at some point.

  • KeePassXC here. Locally encrypted, Locally stored, cloud backup of an encrypted file, synced with SyncThing to mobile devices. I will never trust nor recommend a cloud based manager with all the breaches.

  • Everyone should be using a password manager. Every service should have a different password (and some service should have several passwords) and it's impossible for the average person to keep track of all of those. Every time I hear about someone losing control of an account it's because they were using the same password as another service.

    I recommend:

    • KeePassDX: Can be completely offline. Probably the most secure but can be a little awkward to use sometimes.
    • Bitwarden: Cloud based but open source. You could run a server but the main service offers MOST of the features for free.

    Your mileage may very with some of the proprietary platforms. However my job uses 1 Password and it seems to be fairly safe.

  • Bitwarden fan over here. Been using it for a month and I have just 1 complaint; can't sign into the Android app. Signing in with my mobile browser works though. No idea why the app is being fussy. I'll contact them about it when I stop being lazy.

  • I can’t imagine life without one. So many bad password habits can be eliminated by using a password manager to generate a strong, unique password for every site you use, and devoting your limited password-remembering powers to one decent master password. (Or better yet, secure your password manager further using other forms of authentication.)

    It’s not just for helping you (and your less technically inclined friends and family) remember and use strong, unique passwords, though. Since a password manager only recognizes the real web address that any given password was designated to, it won’t be fooled by a scam website using a similar-looking name to a legitimate one. While this doesn’t eliminate the risk of falling for a scam, every little bit helps, no matter how skilled you are at cybersecurity.

    I use Bitwarden, which I’ve been using ever since Lastpass started limiting you to using a single device class (mobile or desktop) for free accounts. It integrates with both Firefox and Chromium-based browsers and with the password manager features in smartphones. Their free account is nice, but I went with the paid option so that I could keep and use 2FA passcodes within Bitwarden itself. There have been several debates between doing it like this versus using a separate authenticator app, but I feel like it’s both very secure and really, really convenient. It encourages me to use increased security on every website that supports it.

  • At this point NOT using a password manager is absolutely insane from a security perspective. Password managers not only make your life easier, but if you use them correctly, you can setup each service with its own dedicated and complex password. Good luck doing that without one!

  • I started using Bitwarden a few years ago, and I will never turn back. Passwords available across all my devices (android app, chrome extensions etc). You can also sign up with them (they have free which is pretty limited and a paid version) or you can selfhost.

    I run it selfhosted, so I don't pay and don't have any limitations.

    They have received a huge influx of users recently from 1password Lastpass after that breach.

  • Been using Bitwarden for years now. It's one of the first apps I install on every new device or browser.

  • Bitwarden for sure. I use it to store passwords, of course. But also to generate stronger passwords than I can make up myself. I also like the secure notes and emergency contact functions.

  • One more vote for Bitwarden over here. I use the paid version, which is really cheap and because it supports the development. Been using it for almost 5 years and it's the absolute best.

  • This thread inspired me to take a look at Bitwarden. It's so much better than what I was using that I switched instantly.

  • Trust no one. Not because you're paranoid, but because you don't need to.

    Trust no one and just use KeePassXC.

  • Started out with lastpass many years ago, until it was bought by logmein. Have been using Bitwarden since.

  • KeePassXC is awesome, used it for years. Works great with browser plugin, secure. Sync with Syncthing across all computers and devices.

  • I do not trust cloud based password managers even if they claim to be E2EE and all other stuffs. I only trust offline password managers like KeePassDX (using it right now) etc.

  • I am also using 1Password since ages. Using a password manager is a great investment into your security. There are so many data leaks and reusing passwords is bad practice and will create headaches.

    I am looking for alternatives though, since 1Password is getting worse.

1030 comments