10

Question:

What password manager do you use and why?

Comments
  • 3
    Lastpass, don't really know why. They support 2fa at least, unlike 1Password 😂
  • 0
  • 1
    @Santaclauze 2 factors authentication, when you have to enter a code received on your phone to login
  • 7
    Keepass 2. Its free, it saves your passwords locally on your pc, and it has a mobile app. I dont trust any online password managers :x
  • 5
    None right now but otherwise I look for one's which are open source and use solid crypto like bitwarden for example. I'd never go for services like lastpass.
  • 1
    None i just use litte variations of the same password everywhere 😅😅😅
  • 2
    My noggin and a few trusted passwords and variations.
  • 3
    @olback 1password supports 2FA as well, I’ve been using it for some time and it’s great
  • 5
    I use my brain.
  • 3
    I was developing one in python but I dropped it because I didn't understand cryptography well enough.
  • 3
    KeePass (with a quite good password) in a private github repository.

    I like to live dangerously. Maybe I shouldn't do that.
  • 1
    LastPass, of course.

    Because it works with everything.
  • 1
    I'm currently using dashlane, but I'm eyeballing gnupass or possibility to make it more accessible. I've one year to figure it out.
  • 2
    @Condor Yesss +1 for Pass, it’s so simple and really all the functionality you need in a password manager. And like you said, it’s secure thanks to GPG key encryption. You can also sync your passwords between devices through git (doesn’t have to be on a Github repo, I have mine set up in Dropbox). I love it, it’s super useful seeing as I spend the majority of the time in a CL environment anyway.

    Fyi, there’s a Pass app for iOS too.
  • 1
    Bitwarden.

    Cloud-based, open source, option for self-hosting your own password server. The Pro-plan is quite cheap. Also as easy to use as Lastpass or similar services.
  • 1
    Keeps. Because I'm forced.
  • 1
    I have a weird system where my password changes depending on the domain.

    This way I have a different password for everything and it's simple to remember. 😁
  • 1
    @olback i use 1password. It does have 2fa. It had it before lastpass. Las pass has been breached twice soooo, if possible I would stick with keepass2 + private cloud.

    So far 1password has been great
  • 1
    Hey @linuxxx, I saw that you are an expert in Cyber Security. May I ask you what you studied?
  • 1
    My brain with a little algorithm. This can make it quite long for me to determine the password for a website I hardly use, but for everyday websites muscle memory makes it faster
  • 3
    @Kodeus I know my way around it haha, not an official expert at all :). I studied software development!
  • 1
    Keepass with the Datafile in gdrive and the Access-File in my nextcloud and the master Password in my head

    Therefore available on all my devices and secure
  • 1
    I use my brain for few passwords I frequently use and are most necessary for me to know (like email). New passwords are mostly a variation of one password based on a logic inside my head so I can look at the site and know what my pass would probably be. Other less important passwords are just stored somewhere I can use them once I really need them. I never had the need for lastpass or dashlane, they kinda (at least to me) sound like good way to screw yourself over if you forget their login (master) password which you wont use frequently and forget in few years time.
  • 2
    Also bitwarden here.
    In the self-hosted variant on my server.

    Why:
    I used KeePass before but it was ugly keeping the DB in sync on all my PCs (Work, Home Laptop, Home PC, Backup on Home Server) and the Phone.
    Therefore I looked into a more feasible solution but I wanted something self-hosted.
  • 2
    Keepass 2. Simple as that.
  • 2
    @linuxxx Ah okay, thanks!
  • 1
    @Floydian sure that it can't be cracked? I know I once disabled a password-protected excel file (only had cell protection) with a VB script I found somewhere on the internet.
  • 1
    @Floydian Yeah just looked it up, 256-bit AES for the current version of excel, you should be good.
  • 1
    @Floydian idk, I think that there are better more comfortable solutions out there. If you don't trust traditional cloud-based solutions and don't want to self-host a Bitwarden server, get KeePassX with your own cloud synchronization for example, or synchronize with the Google or Dropbox clouds, since the file is encrypted.

    No need to go with the Microsoft lock in, plus it's open source so people can actually look at the code and see if the encryption is secure.
  • 1
    Convince me to get a password manager by hacking into my account ;)
  • 2
    @Floydian use KeePassXC, I've just seen that KeePassX is not being maintained any longer, but XC is.

    Cloud synchronization with Dropbox, Google Drive, OneDrive, ownCloud, Nextcloud etc. can be easily accomplished by simply storing your KeePassXC database inside your shared cloud folder and letting your desktop synchronization client do the rest. 
  • 2
    @Floydian some people prefer it that way. I too just use a service providing an easily accessible browser plugin like I mentioned. But KeePassXC still seems a bit more reasonable for password management than an encrypted excel file, the restrictions on usability should be about the same but with KeePassXC you get more features like a nice secure password generator.
  • 1
    @Qwby

    KeePassXC all the way! (https://keepassxc.org) I've found it recently and I have to say I quite like it so far! Open Source, cross platform, nice web extension, support 2FA, AutoType feature (awesome for game launchers), etc.

    I read a lot about Bitwarden too, but for now I'm enjoying KeePassXC.
  • 0
    https://www.passwordstore.org/

    Its gpg encrypted
    Uses git
    Open source
    Has ability for otp keys
Add Comment