Ask HN: What is the best password manager available today?

30 点作者 dijondreams大约 2 年前

I am afraid of a private company being responsible for my passwords but also not confident in my own ability to manage any sort of password manager across all my devices. What do people do?

26 条评论

mikece大约 2 年前

For cloud-synched across devices: BitWarden.For maximum security (no cloud sync): KeePassXCIn both cases an essential feature applies: if you forget your master password you've lost access to your password database.

评论 #35846094 未加载

评论 #35846141 未加载

评论 #35847371 未加载

评论 #35845873 未加载

评论 #35848780 未加载

评论 #35845968 未加载

doodlesdev大约 2 年前

So, please define best, because it depends on what you're looking for. A list of the options I know and would personally recommend:Bitwarden (optionally with self-hosted Vaultwarden) - Best UX for the FOSS options, syncs all your devices, overall just pretty good.<pre><code> Website: https://bitwarden.com/ Vaultwarden: https://github.com/dani-garcia/vaultwarden </code></pre> KeepassXC (optionally synced with syncthing or your cloud provider of choice) - Portable, no need to host a server to keep the database, offline-first. Database format is standardized, and other password managers support the database format.<pre><code> Desktop: https://keepassxc.org/ Android: https://www.keepassdx.com/ iOS: https://strongboxsafe.com/ Syncthing: https://syncthing.net/ </code></pre> pass, if you're always on the terminal. (optionally synced with syncthing or any cloud provider). Or you can go with gopass, which uses the same database format, has better support for multiple users/stores, and enables git versioning by default. There are GUI and mobile clients available that are compatible with this database format.<pre><code> pass: https://www.passwordstore.org/ gopass: https://www.gopass.pw/ </code></pre> These are the main ones I would recommend you take a look at for the most common use-cases. I can't recommend anything that doesn't provide FOSS clients or that can't be self-hosted, so some decent options UX-wise were excluded. You really have to see what you want out of the password manager to choose one. Keep in mind that for both pass and keepass there are multiple clients that are compatible with the database format, that affords you with more portability, options, and the possibility of having native clients.

xarope大约 2 年前

I'd echo what others say, KeePassXC on local storage, which you can then sync across devices either with syncthing, dropbox etc.However, I have just started exploring using vaultwarden (a rust rewrite of bitwarden, which is self-hosted).

评论 #35846159 未加载

zmmmmm大约 2 年前

Unix pass [0][0] <a href="https://www.passwordstore.org/" rel="nofollow">https://www.passwordstore.org/</a>

评论 #35846046 未加载

评论 #35845992 未加载

Costanzilla大约 2 年前

Back when 1password, 90% sure it was that, had no Linux client I was searching for a solution to store passwords and settled for Enpass.I sync via WebDAV on my Synology NAS and I’m not really worried to lose anything since every synced device has a full copy of the data.Thought about switching to 1password a few months back since we’re using it at work and the client is better but they don’t have an Enpass import. It supports some kind of CSV transfer but I don’t want to pay for a bunch of, worst case scenario, not really perfectly structured data so I decided to stick with what I have.Edit: when thinking of switching I was a little nitpicky. I’m pretty happy with Enpass everything considered. 1p client is just even better but with the give them your data and your money thing, which I’m not necessarily fond of

评论 #35846260 未加载

评论 #35848294 未加载

thealchemistdev大约 2 年前

<a href="https://keepassxc.org/" rel="nofollow">https://keepassxc.org/</a>"no-nonsense, ad-free, tracker-free, and cloud-free manner. Free and open source."Pair with Syncthing to go across devices.

billy_bitchtits大约 2 年前

1password

评论 #35846166 未加载

评论 #35845699 未加载

评论 #35846220 未加载

评论 #35852390 未加载

评论 #35851475 未加载

xupybd大约 2 年前

I use KeePass. I sync with Dropbox. I've not found a solution that competes on simplicity and ease of use.

margoguryan大约 2 年前

Dashlane has never failed me once since 2017. I even got my family to do the family plan. It rocks.

评论 #35848048 未加载

评论 #35846218 未加载

VoodooJuJu大约 2 年前

pass, the standard unix password manager: <a href="https://www.passwordstore.org/" rel="nofollow">https://www.passwordstore.org/</a>

评论 #35846479 未加载

评论 #35846261 未加载

arepublicadoceu大约 2 年前

For all the people recommending keepassxc and are also iOS users, how do you deal with the lack of reproducibility of iOS apps?Even “opensource” apps such as strongbox and keepassium have no way of asserting that whatever code they publish on GitHub is the same that I’m installing through the AppStore.Am I just overly paranoid?This is the main hindrance for me to using KeePassXC everywhere. If I’m going to blindly trust anyone I prefer to trust apple keychain.

blitz大约 2 年前

Self-hosted Bitwarden via Vaultwarden

评论 #35846254 未加载

评论 #35849187 未加载

Hamuko大约 2 年前

I use Secrets (<a href="https://outercorner.com/secrets-mac/" rel="nofollow">https://outercorner.com/secrets-mac/</a>) which syncs via iCloud. Definitely not perfect, especially if you're not heavily within the Apple ecosystem, but at least it's native and doesn't require a subscription.

评论 #35852975 未加载

评论 #35846256 未加载

评论 #35846079 未加载

alanfranz大约 2 年前

Bitwarden can be self hosted. KeePass* you can sync with a separate service (eg Dropbox).

transpute大约 2 年前

Codebook on iOS/macOS with local sync, almost 20 years old, indie dev, <a href="https://news.ycombinator.com/item?id=35804714" rel="nofollow">https://news.ycombinator.com/item?id=35804714</a>

monlockandkey大约 2 年前

Keeweb.infoKepass kdb file compatible but can access through browser interface. Backup kdb file to cloud storage.Don't like bitwarden. Keeping your encrypted password file in Google drive is much better and portable than self hosting on your own server.

rainytuesday大约 2 年前

I like portable-secret which uses the built-in browser cryptographic functions, no external software.<a href="https://github.com/mprimi/portable-secret">https://github.com/mprimi/portable-secret</a>

aborsy大约 2 年前

The most secure option is probably Password Store with a PGP key on Yubikey, in my view.There is also Passage, which is a similar offering, but I have problems with Yubikey PIV PIN caching (and prefer CV25519 to NIST curves).

egamirorrim大约 2 年前

Enpass ftw, clients for all platforms, browser extensions and lets me backup to my own NAS/Dropbox/Gdrive

jiveturkey大约 2 年前

define best. most secure? most usable? most portable? most other?

abbadadda大约 2 年前

Thoughts on SafeInCloud? I just opt not to sync to the cloud.

alexaholic大约 2 年前

iOS/Safari

spicyusername大约 2 年前

KeepassXC synced with Google Drive.

friend_and_foe大约 2 年前

Keepass and syncthing.

jmuncaster大约 2 年前

1password no contest

grapesurgeon大约 2 年前

initially started with dashlane, but it was such a pain in the ass that i never used it. when i started getting my shit together security-wise, i signed up for bitwarden then hosted vaultwarden for a little while. i have keepassxc with syncthing a shot and im probably going to stick with this setup.i have very little confidence recommending anything other than bitwarden/vaultwarden or keepassxc