On principal I don’t use cloud-based password management solutions like this, but Proton Pass does make it somewhat tempting, especially since I have a Proton Unlimited subscription anyways. KeepassXC + syncthing do well enough, but PAM integration would be kind of nice some days when I’m opening and closing my vault a ton.
Proton I generally trust because they have made it abundantly clear just what they will give over to authorities in the event of a court order. I would rather it be less but I also prefer that over “We have your back and will fight the CIA if need be” nonsense.
That said: Bitwarden is still the kind of this. And the big issue with a keepass you sync (which I used to do) is that you can’t really use that with yubikey style devices because it will get out of sync as far as the authentication codes go.
Same. I also have Unlimited, but I’ll stick to Bitwarden because I don’t like having all my eggs in any basket, regardless of how much I trust them.
Bitwarden is okay and free
Competition is always good.
Bitwarden doesn’t have the best UX design
It also got a 100 million USD investment a couple of years ago and even if it hasn’t changed there might be issues in the future and I really don’t want to learn how self hosting working if bitwarden enshittifies.
I still prefer Bitwarden because the server is source-available and most of the code is free and open source. There’s also the FOSS Vaultwarden server fork that I can switch to at any time.
Proton Pass also using end-to-end encryption with FOSS clients is nice, but the server code is completely closed source.
KeePassXC/DX+Syncthing already does this. I have no reason to fund Proton Pass instead.
I honestly can’t stand comments like these. Why is every technology discussion on Lemmy dominated by people congratulating themselves for using something ‘better’? Most of the time without even being asked.
I mean their opinions are welcome but it is also lunacy to expect casual users to maintain or setup keepass+syncthing.
They fail to realize that these news are welcome and can only positively benefit open source projects.
Well said, I couldn’t agree more.
Seems elitist to say people can’t get two apps. Surprised to see this called lunacy, so it’s good I commented to see this response.
Until someone makes a frontend for syncthing that’s significantly dumbed down, it’s not elitist.
I don’t think it’s downloading apps that is hard necessarily, but there are a few big barriers getting in the way for casual users to run a self-hosted FOSS solution:
- seeing a problem with their current way of doing things
- knowing other options exist
- having the confidence to feel like setup won’t be a headache, or that maintenance won’t be a problem with their non-tech background
I think its pretty understandable that a normal person would preference “one simple app” than a DIY 2 app system when you consider the above.
Stop projecting
This comment reads like one of those 1-star establishment reviews on Google that says “I’ve never been there”.