What do you use for syncing your password manager between your Android phone and your PC? Apparently Nextcloud doesn’t support two-way syncing on Android for some reason, and Syncthing-Fork is still untrustworthy since the disastrous handover. The AI generated profile picture of researchxxl doesn’t exactly inspire confidence either, neither does his GitHub bio:
Hi! My name is Jonas and I like to use my coding skills from games and modding to continue work on the Syncthing for Android wrapper.
Everything about this person screams vibe coder.
Bitwarden is an alternative, but I don’t like how non-standard it is. It’s cumbersome to manage and backup, meanwhile the KeePass format is just a file that I can backup wherever and however I want and there are many frontends to choose from.
Have you solved this?
Vaultwarden
Removed by mod
Its a port of linux
passwith git built in.You backup your passwords in a private repo and sync back and forth. It’s great if you already use
passYeah,
passhas been discussed a bit in the thread already, but there are a few security issues that keep me from using it. Speaking of security, I had no idea the Android app was archived in 2024. That’s quite a long time without updates. Are you using a fork?Thank you for sharing your workflow either way! Using a git based solution would be amazing.
I’m a vaultwarden user, who likes the idea of both the bitwarden and the keepass way. Just to consider new possibilities, isnt it possible to put the keepass db in a private git (selfhosted forgejo or gitea). And sync the repo with an app like puppygit which syncs automatically everytime I open or close keepass. Is this a safe walkthrough?
I like the idea of using git, and there are people using it with their KeePass database (here’s an example), but I don’t think it’s optimal. If you want to use git,
passis probably the better option, but that brings in a whole lot of other problems.I’ve started using Nextcloud to sync my database and it’s worked out fine so far. Though it would be nice to use something like git that I use all the time regardless, right now the whole bloated Nextcloud stack I have hosted only syncs my small password database haha.
Vaultwarden, no question. When I used KeePass, I had Synology Drive which worked well to sync.
KeepassXC and Nextcloud. Been working fine for years.
Same setup here. Worked for years and I’ve no plans to switch. As long as Nextcloud is up, bidirectional editing is simple. Trouble comes when one of the clients edited the KeePass file and can’t sync.
I’ve had that happen though rarely. In those cases it’s been easy to manually merge the one or two entries if necessary.
Bitwarden.
Paid. Not because I need the added paid features, but because I value it and want to show my appreciation for the developers.
I’ve been using KeePass for almost 20 years now, used to host the database on Google Drive. I started using Syncthing about a year or so ago, including Syncthing-Fork on my Android devices. It’s nearly flawless - I sync the database across 6 devices (two phones, two laptops, gaming PC, NAS [which is backed up regularly]), so there is the occasional conflict maybe once every few months, but I think that’s more user error than anything else. It’s fairly easy to resolve since Syncthing clearly labels the affected file.
It’s very important to remember that “Syncthing-Fork” IS NOT the official Syncthing project. Syncthing-Fork uses Syncthing under the hood while providing a mobile-friendly wrapper.
Edit - Re: Syncthing Fork “drama”:
Catfriend1 (the original maintainer of Syncthing-fork) recently put in their 2 cents.
TL;DR - The new dev is fine.
For me personally, the fact that 1) devs from both F-Droid and Syncthing itself have reviewed and confirmed that the code is safe, and 2) the original maintainer vouched for the new guy, is good enough for me. There will always be those who refuse to trust anything, even from the original developer, and they are often the most vocal about it - i.e. the “vocal minority”. Whether or not you want to listen to their criticisms is up to you. IMO, they’re just beating a dead horse.
Paid bitwarden.
I use Bitwarden too. I now use the paid version (which is incredibly cheap) but I was able to sync between Android and PC without the paid for version iirc
The only (known to me) perk of the paid version is the encrypted storage (and probably the org feature).
So yeah. I see it more of a donation/appreciation than a service fee.
But the recent peice increase stung a bit.Paid also helps if you share passwords with multiple people.
Keepass + syncthing = win
OpenCloud seems promising. It’s a fork of ownCloud from former developers of ownCloud, lighter weight than NextCloud, it uses flat files to store data rather than a DB, and it has an Android client on F-Droid (and Google Play).
I’m hesitant about OpenCloud. Their parent company is Heinlein Group, whom I know nothing about, nor can I find anything about their reputation. The website uses a lot of marketing fluff, which puts me off already.
If you’re curious, their GitHib issues and website have a bit more about them: https://github.com/opencloud-eu/opencloud/issues/231
The Heinlein Group, to which OpenCloud belongs, is probably best known as the operator of the email provider mailbox.org, but also develops OpenTalk, an open source video conferencing solution.
from heise.de.
Being the owner of mailbox.org doesn’t mean anything to me, but it’s context. And there’s more info in that GitHub issue’s links.
My impression is that they know what they’re doing when it comes to production ready software–I share the OPs concerns about the syncthing-fork maintainer–and they have the funding and acumen to stay in business, meaning their software will be maintained.
I can’t endorse them beyond my own personal opinion though. I don’t have any info beyond what a few hours of digging turned up last time I looked into them.
This bit from the heise.de article stood out:
Kiteworks, on the other hand, is less than enthusiastic about – a closed group of developers who are now using the same code in their own company that they already developed under Kiteworks or ownCloud? For Kiteworks, this smells like poaching, so the company is going on the offensive: in an interview with heise online, Kiteworks CEO Jonathan Yaron stated that he intends to sue Peer Heinlein under German and US law: “We love open source, but we won’t let anyone steal from us”.
facepalm
Yeah, it seems like ownCloud isn’t happy about some of their developers forking the code and starting a new company.
For me, that doesn’t really affect my opinion of OpenCloud for my personal use, though.
Personally, I use Keepass with syncthing and it works fine enough. If you don’t really trust the new person behind Syncthing-Fork, you could always install the older version before the handover (I think before v3.4?).
If you really don’t trust syncthing at all, you could just manually back it up. New passwords aren’t made every day, so you could just copy the passwords database over between your devices whenever there’s a change. That’s what I did before I heard about syncthing, and is what I do with my music still, since I don’t regularly update what music I listen to.
Keypass with the vault loaded onto a free OneDrive account.
Just back it up occasionally.
If you’re using a keepass database, Keepass2Android can natively sync with many cloud options including self hosted and generic ones, even without specific “companion” apps. That’s what I use. In my case, it’s backed by my NextCloud, but it used to be Google drive before.
Just also sync the file on your PC, merging changes from different clients is part of the keepass database format and “just works”.
Also VaultWarden works great if your can self host it, but I prefer keepass for a variety of features and integrations.
KeePass2Android is a fantastic project. I’ve been using it for 10+ years on my Android devices. Every once in a while I’ll try a different variant, like KeePassDX, but I always return to the spartan look of KP2A. It “just works”, with no extra fluff.
merging changes from different clients is part of the keepass database format and “just works”.
This is the best thing about KeePass in general.
Vaultwarden with the Bitwarden Android app and browser extension for my desktop. I already have a solid system for backing up the important data for all my docker containers. As soon as I added it, it was automatically added to that process.
My spouse has an account so if I die she can gain access to my passwords with a simple request. That’s function is important to me.
My exact answer as well. Saved me some typing - thanks :)
