I realize those of us working in tech have our own tastes or specialized tools for password managers. But what do you recommend for friends and family to use?
I don't trust cloud based password stores. So I use pass which uses gpg encryption for your passwords.<p><a href="https://www.passwordstore.org" rel="nofollow">https://www.passwordstore.org</a><p>GitHub has a good tutorial on generating your own gpg key:
<a href="https://help.github.com/en/articles/generating-a-new-gpg-key" rel="nofollow">https://help.github.com/en/articles/generating-a-new-gpg-key</a><p>Using this you can encrypt your files. I store my gpg files in on a git forge. This way, I load my gpg key, clone the repo into ~/.password-store and voila! I can use my asswords/secrets across devices. It even has a utility for Android.<p>Besides that, I use Emacs a lot so I use helm-pass package to streamline my password discovery and copy-to-clipboard actions without exposing the password in plain view.
Bitwarden.<p>Personally, I use KeePass with Syncthing but pay for a Bitwarden Family account for my spouse and family members.<p>I migrated from LastPass, to Enpass, and finally to KeePass. Bitwarden basically checks all the boxes for me, but I prefer to control my own data without having to run and maintain the Bitwarden server for the rest.
For most users in the Apple ecosystem, iCloud keychain is an excellent, extremely well-integrated solution. I recommend it to all of my friends and family.
I got relatives who use 1password (<a href="https://1password.com" rel="nofollow">https://1password.com</a>) and are happy with. Dashlane (<a href="https://www.dashlane.com" rel="nofollow">https://www.dashlane.com</a>) would be the other one I have in mind.
Chromes builtin password manager. I trust that google has smart people who will do a good job of securing my passwords and my families. It has its problems but with its auto generated passwords and almost all services I use having two factor , I feel it’s a good choice
The discussion here is somewhat relevant: <a href="https://news.ycombinator.com/item?id=20026297" rel="nofollow">https://news.ycombinator.com/item?id=20026297</a><p>I typically say:<p>1. Anything is better than nothing.<p>2. 1Password is pretty good.<p>3. Keepass is the best if you are ultra paranoid.
Enpass (<a href="https://www.enpass.io/" rel="nofollow">https://www.enpass.io/</a>)<p>It is easy enough for my extremely non-technical wife to use on both her laptop and phone.
I really love KeePass. I don't feel comfortable with 3rd party cloud services.
There are also apps for Android and iOS to work with KeePass databases. It's everything easy.
SAASPASS (<a href="https://saaspass.com" rel="nofollow">https://saaspass.com</a>) is the password manager for the more security minded.
Password Safe (<a href="https://www.pwsafe.org/" rel="nofollow">https://www.pwsafe.org/</a>) is an offline password manager.