What do you prefer to use for a password manager?
How well does it work on mobile? (specifically, using autofill on android 14)
I’m currently using Vaultwarden; but the android app, which is where I’m using it 95% of the time, has always been a bit flakey getting autofill to popup. Now it’s decided to stop working entirely; so I’m going to look around at some alternatives for now.
/edit:
Well, idk what happened.
I spent about 30min trying different things: switched androids autofill settings to another app, changed them back, cleared app data, force stopped everything relevant, re-installed bitwarden, restarted the device, messed with accessibility; nothing seemed to work. Bitwarden adamantly refused to popup for autofill in anything I’d tried. (4-5 different sites in chrome, firefox, and duckduckgo. The openvpn app, Jerboa, my bank. Nothing worked. Absolutely 0 sign of autofill anywhere.)
I made this post and went for a walk.
Now suddenly autofill is working again.
I hate technology sometimes.
/edit again:
The best option I’ve seen so far: There is an ‘autofill’ QuickSettings button you can add to the notification tray that opens the vault and asks which item to fill with. (just like the ‘open vault’ inline autofill option). If inline isn’t popping up, use that.
You must log in or register to comment.
Switched from 1password to vaultwarden, no looking back.
I did the same, as soon as 1Password started migrating to centralized subscription model.
psono password manager from germany, you can self host it and it’s open source
they also give you really good, free support, even when you don’t pay them anything
Interesting, I had not heard of Psono before, cool to see a European alternative that is fully open source. I’m currently self-hosting Vaultwarden but I might give this a try to see how it holds up.
Keyguard, which works on Bitwarden-compatible servers like Vaultwarden
This is not normal, that is not working at all. Repair instead of switching to other manager
I tried. I couldn’t get it to work again, so wanted to look at other options alongside looking for help/solutions.
But just as it decided to stop working, despite my efforts; it’s suddenly started working again.
Sigh…
I used to self-host Bitwarden but switched to Vaultwarden a while back.
In the Bitwarden Android app, make sure all the autofill settings are enabled, including accessibility (which helps with autofill in apps that don’t officially support it). Sometimes, system updates seem to disable them.
Also note that Android apps need to explicitly support autofill. Not all apps do. The “use accessibility” option is supposed to help with apps that don’t officially support autofill.
You can open the browser extension menu and press the fill button. The autofill never seems to have worked here on my mobile Firefox 🤷
In theory you can also self-host Firefox sync, but well… there seem to be issues with that.
I also use keepass and syncthing
Keepass with the android app that syncs over OneDrive. That way I have my passwords anywhere, also when I sit by my old Windows laptop from time to time.
The autofill popup has always been unreliable for me on Android (with Bitwarden)
I use the quick settings tile most of the time instead
Thank you! You gave me the hint I needed.
I didn’t know there was a quick setting button (the buttons in the notification tray) and have been struggling to find the accessibility options people have mentioned.
That button in the tray seems so much more reliable. Thanks again!
Same for me, and I use the button in my quick settings as well.
keepass
it’s technically no password manager but an encrypted file format.
there are dozens of apps that will work on any platform, including soft keyboard with “password” button for smartphone that will just work everywhere and browser extensions, static website, apps that allow you to use your yubikey to unlock and anything else. you can host your vault anywhere including a google drive or your own webdav or ftp server and keep local copies on your devices synchronized…
Wait so I use keepass too. Why is it not technically as password manager
Its an encrypted keyring idk what they’re talking about
I believe they’re argueing, as it can store more than passwords, it’s not purely a password manager.
i mean each of the individual programs that can load your keepass keyring is a password manager.
the keyring itself isn’t a password manager and the main reason why i use it is because each of the individual programs that i actually use to open it (keepassxc on windows, keepassdroid on my phone, keeweb hosted on my vps on other devices…) can use the same file with the same specification that is shared everywhere.
i’m not bound to any particular program with a particular set of features. just use anything that can open that file format from a place where i choose to host it.
I wish I had the confidence in my security provisions to self host my secrets on the internet. I do use bitwarden, but that is local to my machine. It works good for me, as my memory is shit. About the only thing I could say against Bitwarden is that the recent theme change was a huge mistake and caused a lot of people a lot of stress. Insomuch as the public outcry against the new theme was so great, they switched back to the old theme. Whoever created the new theme had to have been a sadist.
I keep vaultwarden behind a vpn so it’s not exposed directly to the net. You don’t need a constant connection to the server; that’s only needed to add/change vault items.
This does require some planning though; it’s easy to lock yourself out of your accounts when you’re away, if you don’t incorporate a backdoor of some kind to let yourself in in an emergency. (lost your device while away from home for example)
My normal vpn connection requires a private key and a password that’s stored in my vault to decrypt it. I’ve setup a method for retrieving a backup set of keys using a series of usernames, emails, passwords, and undocumented paths (these are the only passwords I actually memorize); allowing me to reach vaultwarden where I can retrieve my vault with the data needed to login to everything else properly.
if you don’t incorporate a backdoor
I’ve often thought about this, and since it has come up in convo, I’ll ask: If you were to implement a backdoor to your server, how would you go about that? Currently I have 3 vps and one rack in the closet. It is the vps I’m interested in the most. Only one vps offers a rescue ssh, and yes I can confirm, if you are not exceedingly careful on my setup, you can lock yourself right out. I run tailscale on everything and I often wondered if I could incorporate tailscale as a emergency backdoor.
Most of my web services are behind my vpn, but there are a couple I expose publicly for friends/family to use. Things like emby, ombi, and some generic file sharing with file browser.
One of these has a long custom path setup in nginx which, instead of proxying to the named service, will ask for http basic auth credentials. Use the correct host+path, then provide the correct user+pass, and you’ll be served an openvpn configuration file which includes an encrypted private key. Decrypt that and you’ve got backdoor vpn access.
Been selfhosting the official Bitwarden stack for the last 7 years now and it’s been running great.
Vaultwarden over tailscale has been good to me.
I do have a qualm with how easy it is to accidentally close bitwarden before saving a password and losing the password you just generated. But that’s just taught me to not zip through the process
I believe you can view the generated password history
Too bad it auto-generates a new one in the same menu :)
There’s a “password history” menu on the same generator page that saves a comprehensive history of generated passwords for reference.
Its available in both the app and the browser extension
Yes.
But the menu is after you generate a new password (at least in the extension)
Thus you might not know if the password is a new one or the one you generated. And that might confuse some.That is true. Personally I rely on the timestamps to make the differentiation. But I can see how that might be confusing if one were using the product for the first time. Definitely could use some polish.
Even if you arent sure and gemerated double entries.
IMO there should be a “Generate” button
I use KeePassXC. I have to sync it myself between devices (I use pCloud, syncthing and rclone). They have an android app that works great and there is an iOS app as wellapp, Strongbox. I’ve looked at replacing it a few times but nothing gave me the customisation Keypass offers.
Depends.
Do you want to share passwords with other users? Vaultwarden.
Anything else? Keepass and Syncthing.
I personally host it for my family to share the netflix password or the password for our energy provider. So I use Vaultwarden.
Vaultwarden, KeepassXC or Nextcloud Passwords
