Ask HN: How comfortable do you feel using cloud-based password managers?

1Password has always offered the best usability for me. Many other password managers (eg LastPass) have failed, for instance, to work with the AWS sign in page and some other tricky websites. 1Password UX is also well polished in other ways and is nice to use. I consider this kind of good usability to significantly increase my quality of life, since I login to various online services all the time and I want to eliminate as much hassle as possible.<p>I realize all this requires a great deal of trust in the maker of 1Password having done things right and currently I have that trust. This may change in the future of course.

I&#x27;ve used pretty much every password manager under the sun at one point or another. Lastpass, 1Password, Bitwarden, Dashlane, Remembear, KeePass(X) and I&#x27;ve finally settled on regular ol&#x27; pass.<p>I never really understood how it &quot;syncs&quot; but it&#x27;s just git! Push and pull to update on every device. I use a private repo since site names are still metadata. You could put the whole directory tree in a tomb as well but that extension is only supported on mac only or something.<p>Pass is the one thing that seems fairly universal I think and it&#x27;s all just text files which makes things really nice. No worrying about will it work on mobile or if the browser extension is useless without an application.<p>For example, 1Password X is a standalone extension so you could use it on Linux while Dashlane requires the desktop application running on the host. The connection works but isn&#x27;t always reliable when running non-natively ie WINE<p>As for security, they&#x27;re all fairly well audited I think? Remembear and 1Password both have external audits they pass, and provide remediation plans for any findings. Probably the same with Lastpass. Personally, I don&#x27;t really think about it that much so I don&#x27;t have a good answer. You can interpret that as me trusting providers but I have no real idea. I mainly just focus on the usability hah

Never.<p>I moved from Lastpass to pass(<a href="https:&#x2F;&#x2F;www.passwordstore.org&#x2F;" rel="nofollow">https:&#x2F;&#x2F;www.passwordstore.org&#x2F;</a>). It&#x27;s by far the best decision I&#x27;ve made in a long time (I&#x27;ve moved a lot of services over to my servers and self host pretty much everything)<p>I use Mac, but it works on any machine to my knowledge and the great thing is:<p>1. Use your keys, so ONLY YOU can only decrypt it (gpg keys)<p>2. Has Chrome&#x2F;Firefox extensions that automatically fill out passwords<p>3. Can upload the encrypted passwords to git to use on other machines (presumably)<p>4. Dead simple to use (go on terminal and generate random passwords, bunch of other goodies)<p>5. As said previously, it&#x27;s all on your machine, no one else having access.

I would never trust them, but more importantly I don&#x27;t want to have to waste brain cycles thinking that the 300+ passwords I have saved could be compromised due to neglect that&#x27;s out of my control.<p>I just use <a href="https:&#x2F;&#x2F;www.passwordstore.org&#x2F;" rel="nofollow">https:&#x2F;&#x2F;www.passwordstore.org&#x2F;</a> and it works great (I have 300+ passwords stored for years). It&#x27;s a local command line driven password manager and it&#x27;s pretty great for developer based workflows because you can save multi-line strings which makes it perfect for saving API keys and other sensitive stuff, along with the password you used to sign up to the site.<p>It&#x27;s also smart enough to copy the first line of a multi-line entry to your clipboard, so you can access your passwords to login on a site within a few seconds. Especially since you can navigate your entries on the command line with auto complete.<p>It also leans on GPG encryption instead of trying to invent its own security mechanism.

You could say I put a lot of trust in Google, as I use the built-in password manager in Chrome. My rationale is the following:<p>1. My browser vendor can access my browser passwords anyway.<p>2. It&#x27;s better to trust fewer vendors and pieces of software.<p>3. Copying passwords to clipboard is awfully insecure.<p>4. Trying to remember all passwords is also awfully insecure.<p>I do not save any money-related passwords. I do dream of switching to pass from time to time.

I think conceptually cloud-based password storage is trustworthy if you separate the cloud storage from the password manager software.<p>If both were provided by the same vendor then security motivations would not align. E.g. the vendor could reason that it&#x27;s ok to do server-side encryption instead of client-side for whatever reasons. Or they could capture your master keys and decrypt old backups long after you have deleted things when compelled by a secret court order.<p>Separating storage and software means the software developer should consider the storage provider as potentially hostile and design the password manager accordingly.<p>Additionally a separate solution also increases data mobility. You can use your home server instead of cloud providers, you can move vendors instead of being locked into a single ecosystem.<p>That said, storing your key files offline is still another layer of security that has to be breached, storing it publicly accessible means you are only as safe as your hashed password.<p>Another concern, unrelated to the cloud aspect, is browser integration for password managers. It&#x27;s something one should avoid since the browser extensions closely interface with the websites. It increases the risk that a bug in the extension allows a site to trick them into revealing the wrong secrets in an automated fashion.

For me: I don&#x27;t trust them. You know how people often say &quot;if you didn&#x27;t want it to be public you shouldn&#x27;t have put it on the internet&quot;? Well, that. If there&#x27;s anything worse than a breach that reveals my secure password it&#x27;s a breach that reveals all of my passwords at once.<p>For other people, such as family members: I totally recommend it. It is way better than whatever password reuse they are doing now, and the chances of a breach are low enough.<p>My point being: I think they are overall better than not using anything, but if you have the knowledge and diligence to keep an offline encrypted file (and its backup!) up to date, then I would suggest doing that instead.

I also never felt comfortable using cloud password managers. I used to have a KeePass file on Dropbox (with an offline key file) to stay a little more in control. Synchronization worked quite well but some month ago I switched to following setup to avoid Dropbox or similar services:<p>I have a KeePass file and use Syncthing to share it across all my devices. The keyfile is not synced and I manually send to any new device. Syncthing works well and most KeePass clients can nicely merge two KeePass databases in case of conflicts. Firefox integration with Kee.pm is really convenient.<p>For me this works really well. It was easy to setup and in my opinion it is very much worth it if you want to avoid third-party hosting.

I use a hybrid approach with Lastpass used as a password entropy storage. For important services like Github I only store half of the password in LastPass. Then I add a nonce and a generic short password.<p>The final password is 12-16 random characters for LastPass + 3 chars Nonce that I generate from the service name (in my head) and a short 5 character password.<p>If LastPass leaks the secrets no one is able to take over the accounts easily.<p>For services that don&#x27;t matter much I just store the whole password in LastPass.

I would trust them but I don&#x27;t take the risk of &quot;trust&quot;. There could be always issues which are out of your or the Password Managers control, e.g. crypto issues and also long term issues like quantum computing.<p>Due to this, I keep all of my passwords offline, as far as possible. For mobility and comfort reasons, I developed Authorizer (<a href="https:&#x2F;&#x2F;github.com&#x2F;tejado&#x2F;Authorizer" rel="nofollow">https:&#x2F;&#x2F;github.com&#x2F;tejado&#x2F;Authorizer</a>):<p>&quot;A Password Manager for Android with Auto-Type over USB and Bluetooth, OTP and much more.<p>The idea behind Authorizer is, to use old smartphones as a hardware password manager only. To avoid manual typing of long and complex passwords everytime you need them, Authorizer provides Auto-Type features over USB and Bluetooth. It pretends to be a keyboard (e.g. over an USB On-The-Go adapter) and with a button press inside the app, it will automatically type the password for you on your pc, laptop, tablet or other smartphone.&quot;

It took me a while to come around, but Bitwarden finally convinced me. Both the clients and servers (there are third-party implementations) are open-source and besides the security audit they had some time ago, I also checked some components myself to reassure myself that all outgoing data is in fact encrypted and that the decryption is done client-side.<p>The only way I can see someone getting to my passwords is by getting malicious code into the browser extension and&#x2F;or mobile app. That means the only viable attacks are through Mozilla and Google, who I already have to trust for my browser and mobile OS.

Bitwarden is open source.<p>Lastpass has has intrusion in the past 2015 and are closed source.<p>Site below has a list of some security incidents related to password managers. <a href="https:&#x2F;&#x2F;password-managers.bestreviews.net&#x2F;faq&#x2F;which-password-managers-have-been-hacked&#x2F;" rel="nofollow">https:&#x2F;&#x2F;password-managers.bestreviews.net&#x2F;faq&#x2F;which-password...</a><p>A secure password manager would need to have the decryption keys offline client side save from central attacks.

I tried 1Password but finally resolved to use iCloud keychain after watching this BlackHat 2016 video <a href="https:&#x2F;&#x2F;youtu.be&#x2F;BLGFriOKz6U" rel="nofollow">https:&#x2F;&#x2F;youtu.be&#x2F;BLGFriOKz6U</a>.<p>I mean as far as I already trust their OS nothing can really protect me from being spied by them if they are ill intentioned, so as long as they are serious and patch their security flaw on a timely manner I can live with that. Beside it come as a free plan if you don&#x27;t need more than 5GB of iCloud storage.<p>I&#x27;d figure using an external password manager just add another third party I need to trust and the fact that 1Password offer browser app interface (on top of native) don&#x27;t reassure me in any way.<p>Of course if I&#x27;d ever need to reassess my threat model because I can&#x27;t trust Apple anymore, I will quit iCloud service at the same time as their OS and go full FOSS.

Sometime ago, I bought 1Password for iOS, then Mac, mostly for convenience and I was happy with it until I got no viable way to use it on Windows simply because their client still in early development sucked. After some time again they stopped caring about the local db feature and for me that was it. I Moved immediately to Keepass and never looked back. The reason was because I can find a client for nearly every platform possible and because I store MY OWN database where I want.<p>I prefer to store KeePass encrypted dB on Dropbox than going for 1Password cloud.<p>Plus Keepass is opensource...

My company uses some enterprise Lastpass, and I would never give a dime for it myself. Not because of the quality, but because if the UX. I constantly have issues to find credentials shared with me, the plug-in is constantly interrupting my usual flow, and so on. Just not a fan. Personally I use KeePass. I know there are some security concerns with the application itself, but it has served me well.<p>Just because of the LastPass experience I&#x27;m not sure would I try something else.

Same way I feel about security domains at work: you either have to trust encryption, or never use any network. It’s that binary.<p>At work I’ll see people — the security team, usually — taking some already-encrypted thing and re-hardening it to the nth degree. I think that’s stupid. If you don’t trust your encryption, don’t bother using it. If you do trust it, stop there. It’s maths. It’s proven.<p>I feel the same about 1Password. I trust that they encrypt my stuff with trusted encryption. That’s it.

I&#x27;m not comfortable at all using them. For one thing, I can&#x27;t tell how they&#x27;re really storing the passwords, or what kind of encryption they&#x27;re using there, so I end up being forced to merely trust they&#x27;re doing the right thing rather than giving backdoors to others or rolling out their own crypto or using some setup that can be reversed on their side.<p>Additionally, I also believe that:<p>1. I should have access to all my passwords without a working or stable internet connection<p>2. And that I should leave as few ways for social media&#x2F;cancel culture pressure to affect my life as possible.<p>Hence offline systems like KeePass work fine for me. I can trust they&#x27;re not providing backdoors, I don&#x27;t have to worry about a third party server getting hacked, they&#x27;re accessible offline and if I end up in a controversy, my enemies can&#x27;t do anything to get my account suspended or terminated.

If it helps, Bitwarden, including server, is open source. Of course that isn&#x27;t a panacea by any means, but you can at least build it yourself and glance over the code. For me I prefer it to closed source for sure, and honestly even if the UI isn’t as pretty Bitwarden checks all of my boxes and tends to work really well across the platforms I use it on, including Linux, and it doesn’t have the same extension security troubles as many other password managers have had (1password prior to 1password X suffered due to communication with a desktop app and the complications that brings. Lastpass doesn’t do that, but has had arbitrary code execution vulnerabilities in their extension.)<p>And of course, Keepass XC is always a very formidable password manager.

I&#x27;ve been using Apple&#x27;s iCloud Keychain since it was first released 6 years ago. It&#x27;s well-integrated so I don&#x27;t need to think about it. I&#x27;m already trusting their OS, and if it gets compromised, at least I won&#x27;t be alone.

I think it&#x27;s just stupid to trust anyone with your passwords even when they are encrypted.<p>We all know how just after some years all encryption can be rendered useless by some technical advancement or mathematical brake-through (potentially).<p>In my opinion you are far better off with some device (mooltipass, yubikey) that holds your credentials because you have physical control over it and the chances your encrypted passwords are stolen are much lower than going with the cloud option.<p>This isn&#x27;t about being paranoid but about minimizing the risk of ones credential being exposed&#x2F;compromised.<p>We trust entities far too much for my taste and next to credentials I also don&#x27;t feel comfortable with private pictures and videos of&#x2F;with me being uploaded to some cloud.<p>1. Something could go wrong while transport (poor SSL&#x2F;TLS, compromised devices in between (MITM) &amp; weak crypto) 2. Something could go wrong on the companies side (failure to implement crypto properly, usage of weak crypto, bad server security) 3. Most encryption can be broken and it probably will be broken. This isn&#x27;t about the fear of quantum computing but plain logic. Crypto often relies on some mathematical assumption that states that no one can break something in a realistic amount of time (e.g. discrete logarithms) which is rendered useless by superior equipment&#x2F;power to calculate. Then there is implementation details which are too complex (or the people who implement it just don&#x27;t take enough care) to be executed in the correct (=secure) way, easily.<p>This is a problem we can see on many waypoints in these scenarios and this fact for itself increases the risk of being compromised in a scale I&#x27;ll always try to weigh in and to minimize.

I&#x27;m currently using LastPass, keeping my bank, anything that can control my bank, and my email(s), but I wouldn&#x27;t mind switching to something less centralized.<p>It&#x27;s my opinion that you end up having to trust someone, and having a password manager that I can arbitrarily make new identities with secure passwords automagically outweighs the small (imo) chance that the password manager is untrustworthy.

I only trust them when they&#x27;re open-source and I can self-host it on my own hardware. That&#x27;s why I settled for Bitwarden (or to be more exact, bitwarden-rs).

I don&#x27;t trust any company with my passwords. I use keepassx and sync from my laptop to my Android devices using Syncthing. Ideally I could use a self hosted cloud password manager, but it&#x27;s a larger attack surface than a local one.

After I lost one copy of my passwords database in Dashlane, I&#x27;ve moved to Firefox Sync. Then years later, after switching to Vivaldi I&#x27;ve pick offline Enpass but I still have KeepassX as backup solution if they would decide to abandon their business.<p>I&#x27;m not a fan of cloud storage that much anyway - not after Dropbox invited C. Rice to board of directors. [1]<p>[1]- <a href="https:&#x2F;&#x2F;en.wikipedia.org&#x2F;wiki&#x2F;Criticism_of_Dropbox#April_2014_Condoleezza_Rice_appointment_to_board_of_directors" rel="nofollow">https:&#x2F;&#x2F;en.wikipedia.org&#x2F;wiki&#x2F;Criticism_of_Dropbox#April_201...</a>

I don’t trust them 100% but I don’t trust myself to keep a file-based one (such as keepass) working without losing the file either.<p>It’s the same with backups. I can’t be trusted with my own data. I’d rather let someone else keep.

The only way to protect your information from being stolen is to not store it on somebody else&#x27;s server. Every &#x27;cloud&#x27; server is on compromise away from draining your bank account.

I just use KeePass, and Syncthing to automatically sync its encrypted password file (and other files I care about) to my android phone and all my windows computers. No cloud needed.

Not very. I use pass together with a self-hosted git repo.<p>Passwords are too important to evaluate a manager on convenience primarily. I think it is a little strange that banks do not work to get in this area. You trust your bank or else you would not keep your money there. I know too little about the main password manager companies to know if they are trustworthy.<p>I guess this is too small domain for banks but I think it would be interesting to see what happened if they moved into it.

I will never use any cloud based PM.<p>The biggest issue for me is transparency and complexity, most of them are just as &quot;blackbox&quot; as any other service.<p>I am using KeePassX with git + gpg on my own server for extra encryption and sync, this solution is simple and future-proof.<p>and I might switch to my own script in future, dir + txt + git + gpg should be enough.<p>Need a random password? cat &#x2F;dev&#x2F;urandom | base64 | cut 1-64<p>Grouping? Just different directories.<p>Please also remember, there is no cloud, just other people&#x27;s computer.

I use <a href="https:&#x2F;&#x2F;app.keeweb.info&#x2F;" rel="nofollow">https:&#x2F;&#x2F;app.keeweb.info&#x2F;</a> but I host the data itself, it&#x27;s actually just a static page until you connect it to your preferred data store. I like it because the page and data caches for use offline and it&#x27;s multi-device. I just copy&#x2F;paste the hard way to fill forms and even transcribe from my phone on devices I don&#x27;t trust.

I don&#x27;t trust them as much as an offline solution, and as enough solid offline solutions are available I avoid these cloud-based services.<p>Keepass does everything I need and supports all platforms I use. Sync isn&#x27;t comparable but then again I don&#x27;t register new accounts or change passwords every single day, so this is an area where sync features beyond what I get with syncthing are pretty irrelevant to me.

I have used 1password. I only moved to Bitwarden because I decided that if the PM was going to demand cloud backing I might as well pay cloud cost to an open-source entity. 1password is faster.<p>I used to use rsync (bittorrent-sync) to keep my own hosts up to date against each other. This was painful to manage so I accepted the bitwarden cloud model.<p>The risks are there, for sure. If you doubt the crypto behind your keystore, <i>where it is</i> should worry you little because <i>how insecure it is</i> should not be about where it is: its about how its shrouded, and how what is shrouded can be revealed.<p>My belief in the shroud protecting my secrets is my belief in their ability to code to the spec. it wasn&#x27;t founded in my use of a private filestore to back the keystore, although I did, and I prefer private files, to private cloud files, to cloud files hosted by some intermediary, to public cloud.<p>Bitwarden is a private cloud file, hosted by some intermediary. The risk here is twofold: the intermediary is broken and its persisting filestore is readable, and bitwarden is broken and its interior private view becomes visible.<p>My best belief is that no part of my interactions depend on bitwarden knowing the interior state of my keys, they only handle shrouded data, and either I run apps which decode locally, or I run javascript which decodes locally, but I do not expect or believe any transit of the un-shrouded state of my data routinely has to flow through their hands. And the persistence of that belief is because they say the limits to how they can help recover my keystore, if I lose critical information. if they are truthful here, they cannot help me if I lose the escrow passphrase, because nothing they hold is the decrypt of my shroud. I have to give permission to de-shroud there side, the protecting key. its otherwise only used locally to me. (if somebody breaks the .js code, then the filestore being in the cloud is irrelevant)<p>1Password made the same kinds of commitment to me. As do LastPass and a number of other people. They all have to be comparable in this regard because its the fundamental business model.<p>At one stage, there was some leakage in the model for some keystores. The file names un-necessarily encoded revealing parts of the URLs they related to. I think thats changed now. It was scary. I had assumed everything was shrouded, it turned out for some period of time, only passwords and identity inside the URL had been fully protected. They changed that. I think it was 1password, it might have been lastpass. It wasn&#x27;t bitwarden because I moved to them earlier this year and that was 2-3 years ago or more.<p>If I have misunderstood and sometimes my data is visible to them in clear, on their machines, I&#x27;d love to know.

Not so comfortable. However, I trust the 1Password guys, I had some contact with the founders a couple of years ago, they even gifted me the iOS and Mac version, and found them competent and trustworthy.<p>The reason I went with the cloud sync is that I have to share secrets over multiple companies with all kinds of people and 1Password is simply the best compromise of convenience and security I found.

0. If the FBI&#x2F;Mossad&#x2F;etc. want my passwords, they can threaten to cut my toes off one by one and I&#x27;ll just give them the passwords. So they&#x27;re outside of my threat model.<p>1. All my important stuff has two-factor auth, so a malicious password manager company couldn&#x27;t get in anyway.<p>2. If you&#x27;re using one of the major vendors with a reputation and a paid service, that produces a fairly strong incentive for them to not be <i>intentionally</i> malicious - if they were caught distributing an update that made it possible for the companies to see your passwords, nobody would ever use them.<p>(All the major password managers do client-side encryption; they don&#x27;t store plaintext passwords themselves. They do distribute the client that lets you decrypt passwords, but that&#x27;s it.)<p>So that leaves accidental risk (bad crypto, hijacked update chain, client-side vulnerabilities). Out of the options, I&#x27;m comfortable with the track record of 1Password in particular.<p>I&#x27;m very interested in open-source options, but the major ones are all proprietary and the open-source ones are all volunteer-driven and I think the risk tradeoff is wrong. It&#x27;s not a decision I feel 100% comfortable about but between the options of proprietary-but-professionally-maintained and open-source-but-hobbyist-maintained the former seems vaguely preferable for security-sensitive software, especially given that one of my requirements is I want to use a password manager extension.<p>Shameless plug, I have a personal digital security podcast and we took a look at various password managers and their security track records recently: <a href="https:&#x2F;&#x2F;looseleafsecurity.com&#x2F;episodes&#x2F;password-manager-security-model.html" rel="nofollow">https:&#x2F;&#x2F;looseleafsecurity.com&#x2F;episodes&#x2F;password-manager-secu...</a>

Zero. Nada. Njet!<p>Passwords are those little peckers, that make everyday&#x27;s life with a computer uncomfortable. So it would make a lot of sense to sync them between all the machines I use. But it&#x27;s never going to happen, that I store my passwords on your computer!<p>You must rip them out of my dead, cold hands!<p>Locally, I use KeePass and KeePassX on Windows, Android and Linux and Keychain on macOS.

I&#x27;ve been using Lastpass for years now. It&#x27;s good but not perfect. Occasionally I have to fiddle with it. There are a few web sites that Lastpass can&#x27;t deal with. I opt for big passwords so I&#x27;m sure it&#x27;s more secure than trying to use my memory and&#x2F;or some ad hoc scheme.<p>I haven&#x27;t done an organized comparison of password managers.

I don&#x27;t.<p>I use KeePass, well now I guess it&#x27;s KeePassXC, and I keep up with my onsite backups. There have been way, way more problems with 3rd party and cloud based services than I&#x27;ve had with my private system.<p>I&#x27;ve survived a couple of hardware failures, a few problems I created myself, and effortlessly migrated from Windows to MacOS to Linux in the meantime.

So, I am a student. Recently started using 1password. 2 years ago, I used Lastpass. It&#x27;s UI sucked. Even for Logging in, the 2-3 clicks irritated me, since I was distrustful of extensions. After logging in, more irritation. Now, I don&#x27;t know what changes they&#x27;ve done Then recently used Bitwarden(open-source) for a few months. It was nice, but wasn&#x27;t enough for me, I have 3-digit # of accounts. I also wanted different vaults for different email IDs. Finally got 1password. And UI wise, 1password is just the best. Just lovely design. I use a combination of Google&#x27;s Saved Logins, 1password.<p>Also, the 1password support guy was super super super nice to me. Well, the Bitwarden support guy&#x2F;gal (i don&#x27;t remember that one) was nice too.<p>Speaking of trust, I mean that&#x27;s quite complicated, right? No matter what justification I give, there is some risk and a lot of technicalities which I am not aware of.

I don&#x27;t use them because I couldn&#x27;t trust them. I&#x27;m currently using KeePass synced with Dropbox. Works fine on Android, Mac and Windows. IPhone is a bit annoying, so I store some stuff in iCloud Keychain. I&#x27;ve tried pass and I want to try Bitwarden, but this setup works for me. KeePassXC even supports TOTP.

KeepassXC, synced with syncthing on my synology AND on gdrive. Android client and linux client. Databases for personal, personal extra secure, and work. My partner can get into personal, but not work or extra secure.<p>I have personally read through keepassxc source - haven&#x27;t read the Android client. I have syncthing on my todo list.

I use KeePass stored in a cloud storage provider. As long as I control the encryption ke, it doesn&#x27;t concern me too much if someone manage to grab the KDBX file, as I know the password is quite secure (over 32 characters, with symbols) and has never been used anywhere else.

Plenty comfortable with LastPass here.

I&#x27;m using a self-hosted Nextcloud which stores my passwords. There are &#x27;apps&#x27; for Firefox and Android. They&#x27;re not perfect but work quite well for my use, I have both the benefit of cloud-based, centralised passwords and nobody-else-but-me can touch them.

As an idea, someone could implement a middle ground solution between `pass` (<a href="https:&#x2F;&#x2F;www.passwordstore.org" rel="nofollow">https:&#x2F;&#x2F;www.passwordstore.org</a>) and a cloud solution.<p>Key design: encryption&#x2F;decription happens locally, using standard open-source tools such as GnuPG. The cloud provider cannot _possibly_, ever know your actual contents - they only store them so you can&#x27;t get locked out (which is a very real risk with `pass`; safeguarding our underlying private keys is currently completely left up to us).<p>Also some a conveniece layer could be offered on top of GnuPG; that should be open source, distributed as a non-binary and paid via honor system (also one can pay just for the mentioned hosting).

I&#x27;m not entirely comfortable with online password managers either.<p>For company use, I do use online password managers (1password), as they generally offer a good UX experience for less technical users, and there isn&#x27;t strong rationale to believe companies focussed on password storage&#x2F;transfer have bad practices in place. I also place some of my passwords in these password managers, generally passwords that don&#x27;t do high amounts of damage if compromised.<p>Totally given the choice for a technical team, as many others have pointed to, I like pass or gopass as a team password mechanism, synchronizing passwords over git which is encrypted locally.<p>I&#x27;m pretty sure my reluctance or hesitation around cloud password managers stem from, it&#x27;s hard to know who to trust. Companies pretty much universally have poor practices, missing controls, and will miss-represent or be susceptible to internal dogma about how good the tools and practices are. Allowing online sync of passwords increases the surface area, more things have to be perfect to prevent a compromise than non-online systems.<p>The really difficult part though, is it doesn&#x27;t mean the cloud based manager is actually less secure than a more traditional app, a decent amount of the surface area of both applications intersect. Think of things like a compromise of the build server, unless you&#x27;re running the app totally isolated from the internet, both online and offline apps can get compromised in the same way, and pick you&#x27;re favourite offline app may have higher risk then pick your favourite cloud app based on internal controls that aren&#x27;t talked about.<p>So with this in mind, for me it comes down to making a choice of trust on very imperfect information, only really with the public history of a vendor and how they present themselves externally. So given that imperfect information, I tend to place a higher weight on solutions with less surface area, there are less pieces for the vendor to get perfect to protect the system. And even with online password managers, I never install the browser autofill extensions, again to limit surface area.<p>That said, with password handling the choice of password manager and how it operates is also likely a smaller concern. As in most companies have bad password rotation practices when say an employee quits, or their laptop is compromised, etc. It would be cool to see a standard protocol for a password manager to be able to go in and rotate passwords automagically, and continue to see progress towards SSO and U2F&#x2F;FIDO2 security keys universal adoption.

The only thing that (hopefully) is stored in the cloud with respect to password managers is the encrypted vault containing your passwords. Securing your vault with a strong master password in addition to a U2F like YubiKey seems to me a pretty safe way to store your important data.<p>Additionally, using an open-source password manager that you can audit alleviates any further paranoid concerns you may have. If you also worry about the cloud provider suffering a severe outage then you can always keep offline backups. Assuming that you have the expertise and time you can implement a solution yourself but it always depends on your threat model and your level of paranoia.

I won&#x27;t trust any cloud-based password storage, especially not a proprietary one - even audits do not change my opinion about that - as the main attack vector isn&#x27;t form the hacking side, but from 3 letter agencies and governments instead.<p>Plus it is a huge registry of metadata - any site that i store a password for gives them knowledge that i do use that site.<p>I tried few local solutions - sadly for my use case they both need to work in a shared way(some passwords are used by multiple colleagues at work for example, as they are company wide accounts for external sites that do not support individual accounts), and they do need to work on windows in a non cumbersome way.

Keepass for me, on Android I access via finger&#x2F;thumb print scanner and on desktop I use Firefox with master password enabled. Database stored in Dropbox which is synced to work, home and phone.<p>Prior to doing this (requirement for my job) I didn&#x27;t have any particular set up, so in comparison this feels really good.<p>Main grumble is I don&#x27;t pay for Dropbox so have a device limit, so end up just downloading database onto extra devices which mostly works but sometimes requires redownloading to get latest and potentially uploading to Dropbox if I have created a new password. Maybe I will pay for Dropbox sometime (as let&#x27;s face it, it is useful beyond this case).

I use 1pass like many here, but don&#x27;t use the cloud service and am not happy doing so. My passwords are in a file which i share using a file share service, but i know it is all encrypted with my master password, which is my primary live off defense.<p>I would be interested in hearing how many passwords &#x2F; accounts people have. I am well above 100, i think in the 200 range, so the idea that i could have different passwords, and remember them, is just silly. Password management has to happen, and the best way i can think is to store a majority in a very well encrypted file.<p>I do memorize a few key accounts.

I personally use KeePass and Dropbox.<p>I don&#x27;t mean to hijack the thread, but allow me to ask what you guys use within you company, if anything. Do you use a cloud solution, something self-hosted, or nothing?

I&#x27;m not a big fan of putting my password (encrypted or not) somewhere where I don&#x27;t have control. Therefore, I am using Passbolt[0] at work, since that gets me a browser addon plus web ui, while it also allows me to host it myself, i.e. where I can physically check what ends up written where in the database. Passbolt is open-source, encryption and sharing is GnuPG-based, and they have paid plans available.<p>[0]: <a href="https:&#x2F;&#x2F;www.passbolt.com&#x2F;" rel="nofollow">https:&#x2F;&#x2F;www.passbolt.com&#x2F;</a>

I store my passwords in an encrypted Numbers spreadsheet which I store in iCloud. Thus you need iCloud access and the spreadsheet password to access.<p>I have considered encrypted notes for low security passwords, but find the sort and too easily editing function of notes not great for copying and pasting.<p>I want to use iCloud KeyChain, but I like having a desktop client to manage passwords — but I found it I created a password set on macOS it wouldn’t appear in iOS keychain — anyone know why?

I use pass and use a free Google instance to run git to which it&#x27;s synced. I sync using git to all devices. The git database is also synced to Amazon drive periodically.<p>So the passwords in pass itself are protected by gpg. The Google instance is protected using ssh. Amazon drive is protected using 2-factor auth.<p>No single cloud provider can get at the passwords, but the password database is backed up at multiple locations.

Online is better than not having a backup, so for your hypothetical mom it is probably a good idea (unless you manage their backups).<p>I would generally trust them to want to do the right thing, but software vulnerabilities or crypto bugs (weak IV initialization or so) are reasons to not do this. Unlikely, but the impact is large. But the chance (and impact) of losing all your passwords is even larger.

You mean like LastPass? I don&#x27;t use it, but it seems pretty secure to me. The passwords are encrypted with a password that only you the user know. So if their servers are compromised, your passwords are not. Sure they can push out a malicious update that steals your passwords, but so can any program you have installed on your computer, it&#x27;s just a bit harder.

I don’t use a password manager myself… However, of all the ones I’ve looked at, Valt (Valt.io) seems the most interesting&#x2F;unique...

I&#x27;m using EnPass <a href="https:&#x2F;&#x2F;www.enpass.io&#x2F;" rel="nofollow">https:&#x2F;&#x2F;www.enpass.io&#x2F;</a> They claim to use &quot;open source and peer reviewed cryptography libraries&quot;and that &quot;all your data is with you only and nothing is stored on our servers&quot;. They sync data among devices using Dropbox or iCloud.<p>I trust them.

Nope, but the office uses them, so... whatever. I keep my own passwords in a tool that can sync directly between my own devices.

Do you consider iCloud Keychain to be one?

I think the important is for the client-side process to be fully trusted. If only encrypted data is going to a remote location and there isn&#x27;t a risk of the process being hijacked on the client side you should be good to go.<p>That said, I use my own remote storage (not cloud) with keepass&#x27;s sftp plugin.

Not at all. First of all, it&#x27;s unnecessary, but the idea itself is not very sound in the first place.

I am not comfortable at all using a cloud-based password manager. That said, one of the best options (1Password) does not force you to use their cloud -- they do seem to go out of their way to make this a less than obvious option though, which is disappointing.

I gave up on cloud-based password managers.<p>My current setup:<p>On non-critical services(social media etc.) or websites with U2F, I reuse passwords.<p>For everything else, I use Purse[0] with Yubikey.<p>[0] <a href="https:&#x2F;&#x2F;github.com&#x2F;drduh&#x2F;Purse" rel="nofollow">https:&#x2F;&#x2F;github.com&#x2F;drduh&#x2F;Purse</a>

Not comfortable at all. I use KeePassXC on my GNU&#x2F;Linux machine and my mobile device doesn&#x27;t have any of my passphrases because:<p>1. I don&#x27;t trust my mobile device<p>2. I don&#x27;t like the odds of it being stolen or lost<p>3. I don&#x27;t need the constant distractions anyway

Keeweb has been my favourite so far. I have the client installed everywhere and in worst case I can fallback to google drive and the keeweb website. The compatibility with keepass is a plus for my corporate environment.

I don&#x27;t trust clouds either. Using offline desktop software, making backups on HDDs and once in a few months on DVD-R. For data I don&#x27;t care too much, like game accounts, saving passwords in browser.

I&#x27;m not comfortable with them at all, so I don&#x27;t use them.

I have had good success with LastPass keeping it updated and using the binaries on my devices. I don&#x27;t fully trust anything but also using Authy 2FA on whatever I can as well.

I remember maybe 15 years ago a service for storing your passwords online. They claimed they where unhackable and became very popular. Then they got hacked and all passwords dumped.

Will never use a cloud password store.<p>I use Codebook which provides phone and desktop apps, and allows database syncing over LAN. It’s the best solution that gives you both ease of use and syncing.

I wish I could entrust an entity with my passwords but I&#x27;m too paranoid. Now I have several variations of a single password for general usage :&#x2F;

I&#x27;m more comfortable to store encrypted passwords at the cloud using a service, whose core business is to make it secure than any homegrown solution.

Basically it&#x27;s one step up from using the same password every where. You still have one point of failure but you assume descent security.

The cloud is not the automatic solution to the problem of passwords- chiefly that third parties cannot be trusted to keep them secure.

I have a self hosted bitwarden instance. I feel very comfortable using it and encourage my friends and family to use it as well.

Fine with Lastpass. It&#x27;s not like I&#x27;ve got nuclear launch codes in there anyway &amp; the stuff that matters has 2FA.

I don&#x27;t. That&#x27;s why I use unix pass.

Not at all. First of all, it&#x27;s unnecessary, but the idea itself is not very sound in the first place.

Answer: Its okay to store the encrypted passwords there. Since they are encrypted.

No one uses Firefox Lockbox?

My password manager is the &quot;Forgot your password?&quot; link.

Thanks for the great responses!

Opinion on Lockwise?

The reality is, if a cloud based password manager doesn&#x27;t fit your threat model, you probably need to adjust your threat model.