80

Objective: Secure & private password management, prevent anyone from stealing your passwords.

Option 1: Store Keepass PW file in personal cloud service like OneDrive/GoogleDrive/etc , download file, use KeepassXC to Open

Option 2: Use ProtonPass or similar solution like Bitwarden

Option 3: Host a solution like Vaultwarden

Which would do you choose? Are there more options ? Assume strong masterpassword and strong technical skills

you are viewing a single comment's thread
view the rest of the comments
[-] ippokratis@lemmy.ml 17 points 2 years ago* (last edited 2 years ago)

Vaultwarden behind mutual tls and reverse proxy and https://github.com/oguzhane/bitwarden-mobile until https://github.com/bitwarden/mobile/pull/2629 is merged

But honestly all services you mentioned are worthy.

Anything that fits your needs imao

[-] towerful@programming.dev 2 points 2 years ago* (last edited 2 years ago)

That PR might be a while....
https://github.com/bitwarden/mobile/pull/2629#issuecomment-1731457466

Considering that android is going to prevent users from importing a CA

Edit:

Wait, I think I have my wires crossed.
I think android is removing the ability for apps to install certs.
The user has to manually install a cert, and then select it in the app

Edit again:
Yeh, this is what I was thinking of:
https://httptoolkit.com/blog/android-14-breaks-system-certificate-installation/

But, thinking about it now, I doubt it will actually affect the feature

[-] ippokratis@lemmy.ml 2 points 2 years ago

"But, thinking about it now, I doubt it will actually affect the feature"

It will not

We don't need to import a custom CA authority here just to insatll a client cert

[-] AbidanYre@lemmy.world 1 points 2 years ago

Using let's encrypt is a lot easier to deal with on the client side than modifying CAs, although the initial set up of the server can be a pain in the ass if you're new to it.

this post was submitted on 28 Sep 2023
80 points (98.8% liked)

Selfhosted

60451 readers
959 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

Detailed Rules Post

  1. Be civil.

  2. No spam.

  3. Posts are to be related to self-hosting.

  4. Don't duplicate the full text of your blog or readme if you're providing a link.

  5. Submission headline should match the article title.

  6. No trolling.

  7. Promotion posts require active participation, with an account that is at least 30 days old. F/LOSS without a paywall has exceptions, with requirements. See the rules link for details.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 3 years ago
MODERATORS