by GutenYe on 7/11/18, 2:10 AM with 160 comments
by ohthehugemanate on 7/11/18, 8:12 AM
- it's FOSS, and audited, so it's software I can trust
- great UX on Firefox, chrome, and even Edge. I had my issues, but the project improved them away very quickly.
- sharing support for families or organizations.
- convenient standalone clients for win/Mac/Linux... And even the CLI.
- built in 2FA code generation for each entry, so I don't need a separate app for that.
- the best autofill I've experienced, on desktop browser and even on mobile(!)
- open API so there are third party clients available
- the lead developer is super responsive on GH, so I've been able to contribute.
- cheaper than the alternatives (at least at the time), and I feel good about where my money is going.
I can't recommend it strongly enough. It's one of the OSS applications that has a permanent place on all my devices, right up there with Firefox quantum in my "great examples of OSS" liste.
by keehun on 7/11/18, 3:40 AM
My three points then were:
1. A stand-alone desktop app. Quite annoying to have to open up a browser every time I want to access a password. Basically, it's as inconvenient as Keychain on OSX if you're not using a browser when you need a login info. This could be solved if the browser plugin popup could be persisted as its own window.
2. iOS app is not polished. Not sure about Android app as I've not used it. (* biggest problem then was how slow search was. It has been improved although nowhere as fast as 1Password's—still)
3. In the Safari extension, I would love to be able to search and use item entries that are not specific to the domain. Sometimes, I have other info in secured notes or password entries without a domain that I want to get to from the extension. In these cases, I've had to leave the browser and open the actual app to get access to them.
I just migrated from Bitwarden to 1Password a few days ago and have been much happier since—especially with 1Password's ability to generate 2 factor tokens and put them in your pasteboard automatically so you don't ever have to pull up an Authenticator app!
by m_sahaf on 7/11/18, 3:10 AM
by nickjj on 7/11/18, 1:57 PM
https://www.passwordstore.org/
I use it to manage over 300 passwords and other sensitive blobs of text (it lets you save arbitrary text snippets) and also has some nifty quality of life features like auto-copying a password to your clipboard for 30 seconds when you want to access a specific password.
by pmontra on 7/11/18, 8:23 AM
SQL Server 2017, really? Interesting choice. Open source but we have to pay licenses for the database if we want to self host. I wonder what was wrong with PostgreSQL or MySQL even if they're using .NET Core as a language.
Edit: there is an issue for that https://github.com/bitwarden/core/issues/10
by jhabdas on 7/11/18, 4:44 AM
by ramses0 on 7/11/18, 2:44 AM
by albertop on 7/11/18, 3:27 AM
Our secure cloud syncing features allow you to access your data from anywhere, on any device! Your vault is conveniently optimized for use on desktop, laptop, tablet, and phone devices.
by widerporst on 7/11/18, 6:17 AM
by ron22 on 7/11/18, 3:11 AM
by anotherevan on 7/11/18, 5:07 AM
95% of my usage is in the desktop browser, and the UI of their add-on is great, IMO.
Lastpass' had been getting worse for some time, and their shuttering of Xmarks finally left me with no good reason to stay.
Using the add-on with Firefox on my phone is reasonable, although could be a bit better. Phone experience in general I'd say is also quite reasonable - not used it that much yet, but I think it is quite comparable to other offerings.
by czei002 on 7/11/18, 8:39 AM
To solve this problem I'm working on FejoaAuth (https://fejoa.org/fejoapage/auth.html). FejoaAuth uses an authentication protocol that does not leak the user password to the provider who is going to store the password manager. This protocol is run in a trusted browser plugin in order to ensure the correct execution of the protocol. Thus you can use a single password for authentication and password manager encryption.
by commanderkeen08 on 7/11/18, 7:54 PM
I recently picked up a Pixelbook and have gone all in on ChromeOS. Its replaced my MBP. But unfortunately, that meant parting ways with 1Password.
I needed a new password manager with the following: Self hosted TOTP support (have since decided not to use this) A web UI IOS app with face/Touch ID.
I tried the 1Password subscription but 1Password X just felt too clunky and I wasn’t in love with storing on their server.
Keepass/XC/whatever was a hot mess for me. I really wanted to use it and the idea of keeping and syncing a single db file still really appeals to me, but the ecosystem is such a mess. I tried running a self hosted container for Keepass Web but I kept having to enter a Dropbox API key on every client. I also couldn’t find an iOS app that supported Face ID or the option for storing TOTP. Maybe it’s a better experience on Android. On top of that, the UI was pretty jarring all around.
Bitwarden still has some work in the UI department. The lack of keyboard shortcuts and a native app adds some resistance but it’s manageable for me.
by duxup on 7/11/18, 4:28 AM
by fluxsauce on 7/11/18, 3:09 AM
by amanzi on 7/11/18, 2:43 AM
by amaccuish on 7/11/18, 10:33 AM
by Mefis on 7/11/18, 8:34 AM
by pvg on 7/11/18, 3:02 AM
https://hn.algolia.com/?query=bitwarden&sort=byPopularity&pr...
by untitled_bob on 7/12/18, 10:08 AM
by ericseppanen on 7/11/18, 4:21 AM
Sorry, it doesn't count as open source if everyone needs your permission to run it.
by alexeymetz on 7/16/18, 8:27 PM
Enpass is good, but it's proprietary too.
by logix on 7/11/18, 7:45 AM
by Solar19 on 7/11/18, 3:48 AM
by geberl on 7/11/18, 8:52 AM
by rohan404 on 7/11/18, 3:52 AM
by ggm on 7/11/18, 8:10 AM
by tehabe on 7/11/18, 4:04 PM
It is also possible to define how a URL is matched which is a nice feature too.
by solidrake on 7/11/18, 1:21 PM
by cipherzero on 7/11/18, 6:31 AM
by dorfsmay on 7/11/18, 3:03 AM
by xtf on 7/11/18, 8:29 AM
by vasili111 on 7/11/18, 1:52 PM