On principal I don’t use cloud-based password management solutions like this, but Proton Pass does make it somewhat tempting, especially since I have a Proton Unlimited subscription anyways. KeepassXC + syncthing do well enough, but PAM integration would be kind of nice some days when I’m opening and closing my vault a ton.
Proton I generally trust because they have made it abundantly clear just what they will give over to authorities in the event of a court order. I would rather it be less but I also prefer that over “We have your back and will fight the CIA if need be” nonsense.
That said: Bitwarden is still the kind of this. And the big issue with a keepass you sync (which I used to do) is that you can’t really use that with yubikey style devices because it will get out of sync as far as the authentication codes go.
Same. I also have Unlimited, but I’ll stick to Bitwarden because I don’t like having all my eggs in any basket, regardless of how much I trust them.
Bitwarden is okay and free
I love Bitwarden, but goddamn, they need to figure out form filling. They have my cards, passwords, TOTP, address, and name. And I always end up having to flip back and forth.
Competition is always good.
Bitwarden doesn’t have the best UX design
It also got a 100 million USD investment a couple of years ago and even if it hasn’t changed there might be issues in the future and I really don’t want to learn how self hosting working if bitwarden enshittifies.
I still prefer Bitwarden because the server is source-available and most of the code is free and open source. There’s also the FOSS Vaultwarden server fork that I can switch to at any time.
Proton Pass also using end-to-end encryption with FOSS clients is nice, but the server code is completely closed source.
KeePassXC/DX+Syncthing already does this. I have no reason to fund Proton Pass instead.
I honestly can’t stand comments like these. Why is every technology discussion on Lemmy dominated by people congratulating themselves for using something ‘better’? Most of the time without even being asked.
I mean their opinions are welcome but it is also lunacy to expect casual users to maintain or setup keepass+syncthing.
They fail to realize that these news are welcome and can only positively benefit open source projects.
Seems elitist to say people can’t get two apps. Surprised to see this called lunacy, so it’s good I commented to see this response.
Until someone makes a frontend for syncthing that’s significantly dumbed down, it’s not elitist.
I don’t think it’s downloading apps that is hard necessarily, but there are a few big barriers getting in the way for casual users to run a self-hosted FOSS solution:
- seeing a problem with their current way of doing things
- knowing other options exist
- having the confidence to feel like setup won’t be a headache, or that maintenance won’t be a problem with their non-tech background
I think its pretty understandable that a normal person would preference “one simple app” than a DIY 2 app system when you consider the above.
Well said, I couldn’t agree more.
Stop projecting
This comment reads like one of those 1-star establishment reviews on Google that says “I’ve never been there”.
Cool, now all I need is an official proton drive integration/app on Linux.