this post was submitted on 20 Oct 2024
627 points (87.4% liked)

Technology

60047 readers
2966 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 2 years ago
MODERATORS
top 50 comments
sorted by: hot top controversial new old
[–] [email protected] 213 points 2 months ago* (last edited 2 months ago) (3 children)

This is an important issue IMO that needs to be addressed and the official response by Bitwardens CTO fails to do so.

There is not even a reason provided why such a proprietary license is deemed necessary for the SDK. Furthermore this wasn’t proactively communicated but noticed by users. The locking of the Github Issue indicates that discussion isn’t desired and further communication is not to be expected.

It is a step in the wrong direction after having accepted Venture Capital funding, which already put Bitwardens opensource future in doubt for many users.

This is another step in the wrong direction for a company that proudly uses the opensource slogan.

[–] [email protected] 101 points 2 months ago (2 children)

nothing lasts forever without being enshittified

load more comments (2 replies)
[–] [email protected] 64 points 2 months ago (2 children)

Welp, I guess another time to move here soon.

And I just fucking vouched for them to a friend recently 🤡

Didn't know about VC funding these parasites using their funding to turn everything into shite.

What's the current "best" alternative? Keepass?

[–] [email protected] 17 points 2 months ago (1 children)

I haven't jumped yet, but the Proton suite is looking more and more appealing. I've been eyeing them as a Gmail replacement, but I've been happy with my VPN and password management providers. As this reduces the bundle makes more sense.

[–] [email protected] 29 points 2 months ago (2 children)

They have a solid value proposition but don't like putting all my eggs all in one basket both for security and monopoly reasons.

They seem to be gunning for one stop shop and I think they are doing decent shop but I just don't like the idea after what Google did to us.

Situation is a bit different but gonna need to tka the lessons and not let these corpos do this again.

load more comments (2 replies)
load more comments (1 replies)
load more comments (1 replies)
[–] [email protected] 129 points 2 months ago (12 children)

Oh, for fuck’s sake. Can we have a decent password manager that isn’t tied to a browser or company? I pay for Bitwarden. I’m not being cheap. But open source is more secure. We can look at the code ourselves if there’s a concern.

[–] [email protected] 68 points 2 months ago (1 children)

Keepass: Am I a joke to you?

[–] [email protected] 28 points 2 months ago (1 children)

Love Keepass. Love that I can sync it however I want. Love that there are multiple open source client options across several operating systems.

[–] [email protected] 29 points 2 months ago (1 children)

Android syncthing announced they’re stopping development this year. Open source got fucked double today

load more comments (1 replies)
[–] [email protected] 28 points 2 months ago (1 children)
[–] [email protected] 18 points 2 months ago (9 children)

Isn't Vaultwarden used with non-free Bitwarden clients?

load more comments (9 replies)
load more comments (10 replies)
[–] [email protected] 111 points 2 months ago* (last edited 2 months ago) (8 children)

EDIT: The article has been updated and it was described as a “packaging bug” and not an intended change.

How many times do I need to pack up and move to the next “best option”

[–] [email protected] 49 points 2 months ago

Sadly as many times as needed, complacency is how these companies get "loyal customers" who are willing to put up with bs

[–] [email protected] 24 points 2 months ago (3 children)

Just go to Keepass and its over

load more comments (3 replies)
load more comments (6 replies)
[–] [email protected] 91 points 2 months ago (2 children)
[–] [email protected] 22 points 2 months ago

oh thank god

load more comments (1 replies)
[–] [email protected] 86 points 2 months ago* (last edited 2 months ago) (3 children)

Vaultwarden updated link

Open source version of bitwarden written in rust.

Where is the foundation to support foss?!?

[–] [email protected] 53 points 2 months ago (2 children)

If they're moving away from open source/more monetisation then they're going to do one of two things.

1: Make the client incompatible (e.g you'll need to get hold of and prevent updating of a current client).
2: DMCA the vaultwarden repo

If they're going all-in on a cash grab, they're not going to make it easy for you to get a free version.

[–] [email protected] 27 points 2 months ago (1 children)

Don't forget option 3: someone writes a vaultwarden client independent of the closed-source crap.

If you can write a server that fully supports the client via the documented API, then you know everything you'd need to do to make a client as well.

load more comments (1 replies)
[–] [email protected] 16 points 2 months ago (2 children)

You can't "dmca" the fork that was created while it was still open source. They could only prevent it from getting future updates (directly from them).

load more comments (2 replies)
[–] [email protected] 26 points 2 months ago

You have your link formatted backwards. It should be Vaultwarden, with the link in the parentheses.

load more comments (1 replies)
[–] [email protected] 70 points 2 months ago* (last edited 2 months ago) (6 children)

600 upvotes and only 10 downvotes on literal fake news. I wish readers were less lazy, it’s very frustrating.

Edit: made my statement a bit less toxic. I was mad.

[–] [email protected] 13 points 2 months ago

How is it fake news? They are moving functionality into a proprietary SDK and have a whole framework ready to get around the GPL.

load more comments (5 replies)
[–] [email protected] 61 points 2 months ago (10 children)

Goddammit. It's getting to the point I'm going to have to figure out how to write my own app for this.

load more comments (10 replies)
[–] [email protected] 43 points 2 months ago (4 children)

Great, I've just started to use it last week 🤡

load more comments (4 replies)
[–] [email protected] 42 points 2 months ago (7 children)

can we start reading the articles and not just the headlines??? it literally says it's a packaging bug

load more comments (7 replies)
[–] [email protected] 39 points 2 months ago

Update: Bitwarden posted to X this evening to reaffirm that it's a "packaging bug" and that "Bitwarden remains committed to the open source licensing model."

According to Bitwardens post here, this is a "packaging bug" and will be resolved.

[–] [email protected] 37 points 2 months ago (4 children)

Daniel García, owner of the Vaultwarden repo, has recently taken employment for Bitwarden.

The plot thickens.

load more comments (4 replies)
[–] [email protected] 30 points 2 months ago (8 children)

Keepass vault synced over syncthing.

I keep not regretting it.

[–] [email protected] 106 points 2 months ago (1 children)

This is incredible

Right next to each other lol

load more comments (1 replies)
[–] [email protected] 33 points 2 months ago (4 children)

Was going to be my solution as well, bjt Syncthing-Android just got discontinued.

[–] [email protected] 16 points 2 months ago

F-Droid syncthing-fork is still actively developed and had a patch in the last few weeks.

So hopefully this isn't the end.

load more comments (3 replies)
load more comments (6 replies)
[–] [email protected] 23 points 2 months ago

This is disheartening.

[–] [email protected] 19 points 2 months ago (5 children)

Well this ain't good. I don't really feel like switching apps.

load more comments (5 replies)
[–] [email protected] 17 points 2 months ago (3 children)

I wonder~ I wonder~ I wonder whyyyy...

load more comments (3 replies)
[–] [email protected] 16 points 2 months ago (17 children)

so what's the best pw manager?

[–] [email protected] 77 points 2 months ago (8 children)

Honestly, it's Bitwarden right now. This move signals their intent to change that, though.

load more comments (8 replies)
[–] [email protected] 31 points 2 months ago (2 children)

Vaultwarden is a nice self hosted bitwarden alternative
https://github.com/dani-garcia/vaultwarden

Some prefer using KeepassXC and sync the database between devices
https://www.ctrl.blog/entry/keepass-vs-bitwarden-server.html

[–] [email protected] 23 points 2 months ago (5 children)

+1 For KeePassXC and the KeePass ecosystem. Yes, you need to sync the database yourself, but you can use any file sharing service you like, e.g. google drive, dropbox... or selfhost something like nextcloud (like I do), which for me is actually a point in its favor.

Based on this news, I think I made the right choice back then when I decided to go with KeePass.

load more comments (5 replies)
[–] [email protected] 22 points 2 months ago

Vaultwarden is Bitwarden--at least for now, this change may push them apart.

[–] [email protected] 24 points 2 months ago

Proton Pass is open source and the company that runs it recently reincorporated as a Swiss non-profit to ensure their privacy mission can't be bought out by venture capitalists etc.

https://www.reddit.com/r/ProtonPass/comments/153t85q/proton_pass_is_open_source_and_has_now_passed_an/?utm_source=share&utm_medium=mweb3x&utm_name=mweb3xcss&utm_term=1&utm_content=share_button

https://proton.me/blog/proton-non-profit-foundation

load more comments (14 replies)
load more comments
view more: next ›