Bitwarden is one I use several times a day. They do have a support plan for like $10 a year that gives a couple extra features like TOTP support, but the base level is incredibly robust. It’s open source, too. I know a lot of folks also host their own servers with Vaultwarden, but that’s a little beyond my skill level.
I pay for it just because it’s cheap and to support them
I did this too when it first came out, and then the product became robust enough that I recommended we implement it at work because secrets management was non-existent. We have a bunch of licenses on the Enterprise plan now and it just keeps getting better each update.
My only complaint is that migrating the data to a new server is a pain in the ass and never works correctly, even when following the migration instructions to the letter. Always have to open a ticket with them for that. Not enough of a pain to move to another product, though.
I also still pay for my personal plan. It really is a fantastic product.
I just recently started using their totp function and I can’t believe I didn’t switch sooner. Just the fact alone that it automatically copies the code to your clipboard is such a Time saver not having to open up a separate app.
It’s a wild time saver. I can’t believe other folks go to a whole separate app for their codes! Hitting Ctrl+L to autofill passwords and user names then Ctrl+V for TOTP feels like a hack when I watch other people struggle with their other solutions.
I use a separate app for my codes, if someone somehow gains access to my Bitwarden if they have TOTP as wellcthrn they have all my accounts. With my TOTP in another app they still can’t access them.
Not OP but, consider using something like a YubiKey or similar hardware key for your second factor authentication.
They usually support multiple protocols so you only need to carry one around - and storing your second factor with your passwords is like putting all your eggs in one basket.
Print out recovery codes or get an ekstra hardware key for backup and you get great security for surprisingly little effort.
Right! I was using Authy so I didn’t have to grab my phone every time, but even that was still having to open the Authy app and wait for it to load, copy+paste. But using the keyboard shortcuts for Bitwarden is just so fast. Like you said, feels like a hack. It even auto copies on Android and with the autofill, makes it so easy.
I don’t doubt that! I’ve just seen it mentioned a LOT, much more than any other sites I’ve visited.
I’m not suspicious about it anymore, though—if it wasn’t a free open-source program, that would be a different story! Spotting obvious ads disguised as comments everywhere on Reddit was always fun.
I kinda thought that too, but it’s free and open-source… so that would be weird.
Looking into password managers, though, it does really seem like the best choice. Lastpass had breach lately, KeePass requires self-hosting, and other offerings cost more (and aren’t open-source.)
Bitwarden is one I use several times a day. They do have a support plan for like $10 a year that gives a couple extra features like TOTP support, but the base level is incredibly robust. It’s open source, too. I know a lot of folks also host their own servers with Vaultwarden, but that’s a little beyond my skill level.
I pay for it just because it’s cheap and to support them
Same, the free tier is so good that I’m paying to make sure it stays free.
I did this too when it first came out, and then the product became robust enough that I recommended we implement it at work because secrets management was non-existent. We have a bunch of licenses on the Enterprise plan now and it just keeps getting better each update.
My only complaint is that migrating the data to a new server is a pain in the ass and never works correctly, even when following the migration instructions to the letter. Always have to open a ticket with them for that. Not enough of a pain to move to another product, though.
I also still pay for my personal plan. It really is a fantastic product.
Great I do the same too!
It’s so cheap! The value for the price is astounding.
Oh wow, is it really cheap?! Good much money can I invest right away?!? 11?!1111!
I just recently started using their totp function and I can’t believe I didn’t switch sooner. Just the fact alone that it automatically copies the code to your clipboard is such a Time saver not having to open up a separate app.
It’s a wild time saver. I can’t believe other folks go to a whole separate app for their codes! Hitting Ctrl+L to autofill passwords and user names then Ctrl+V for TOTP feels like a hack when I watch other people struggle with their other solutions.
I use a separate app for my codes, if someone somehow gains access to my Bitwarden if they have TOTP as wellcthrn they have all my accounts. With my TOTP in another app they still can’t access them.
What do you use?
Not OP but, consider using something like a YubiKey or similar hardware key for your second factor authentication.
They usually support multiple protocols so you only need to carry one around - and storing your second factor with your passwords is like putting all your eggs in one basket.
Print out recovery codes or get an ekstra hardware key for backup and you get great security for surprisingly little effort.
Right! I was using Authy so I didn’t have to grab my phone every time, but even that was still having to open the Authy app and wait for it to load, copy+paste. But using the keyboard shortcuts for Bitwarden is just so fast. Like you said, feels like a hack. It even auto copies on Android and with the autofill, makes it so easy.
FYI, This product is 100% marketed on Lemmy for a profit. I’ve seen astroturfed threads multiple times now.
Free app marketed for profit… There might be something wrong with you
It kinda does feel like it’s being promoted here, which seems unnecessary for a free, open-source program hahaha
Might just be because people really like it and want to share.
I don’t doubt that! I’ve just seen it mentioned a LOT, much more than any other sites I’ve visited.
I’m not suspicious about it anymore, though—if it wasn’t a free open-source program, that would be a different story! Spotting obvious ads disguised as comments everywhere on Reddit was always fun.
I kinda thought that too, but it’s free and open-source… so that would be weird.
Looking into password managers, though, it does really seem like the best choice. Lastpass had breach lately, KeePass requires self-hosting, and other offerings cost more (and aren’t open-source.)