this post was submitted on 08 Oct 2024
165 points (96.6% liked)

Selfhosted

39640 readers
302 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
HybridSarcasm@lemmy.world
devve@lemmy.world
HybridSarcasm@lemmy.hybridsarcasm.xyz
165
Why self host a password manager? (programming.dev)
submitted 1 week ago by el_abuelo@programming.dev to c/selfhosted@lemmy.world
158 comments fedilink hide all child comments
 

I'm going to move away from lastpass because the user experience is pretty fucking shit. I was going to look at 1pass as I use it a lot at work and so know it. However I have heard a lot of praise for BitWarden and VaultWarden on here and so probably going to try them out first.

My questions are to those of you who self-host, firstly: why?

And how do you mitigate the risk of your internet going down at home and blocking your access while away?

BitWarden's paid tier is only $10 a year which I'm happy to pay to support a decent service, but im curious about the benefits of the above. I already run syncthing on a pi so adding a password manager wouldn't need any additional hardware.

(page 3) 50 comments
sorted by: hot top controversial new old
[–] MajorasMaskForever@lemmy.world 2 points 1 week ago (6 children)

I've used cloud based services for password managers for work and "self host" my personal stuff. I barely consider it self hosting since I use Keepass and on every machine it's configured to keep a local cached copy of the database but primarily to pull from the database file on my in-home NAS.

Two issues I've had:

Logging into an account on a device currently not on my home network is brutal. I often resort to simply viewing the needed password and painstakingly type it in (and I run with loooooong passwords)

If I add or change a password on a desktop and don't sync my phone before I leave, I get locked out of accounts. Two years rocking this setup it's happened three times, twice I just said meh I don't really need to do this now, a third time I went through account recovery and set a new password from my phone.

Minor complaint:

Sometimes Keepass2Android gets stuck trying to open the remote database and I have to let it sit and timeout (5 minutes!!!) which gets really annoying but happens very infrequently which is why I say just minor complaint

All in all, I find the inconvenience of doing the personal setup so low that to me even a $10 annual subscription is not worth it

[–] el_abuelo@programming.dev 2 points 1 week ago

Appreciate your perspective thanks for sharing.

[–] NonDollarCurrency@monero.town 1 points 1 week ago

The way I get around the syncing issue is to set my syncthing to sync when my phone is charging so it's very unlikely to not be in sync, or if I change a password on the PC I'll plug my phone into a USB and it syncs straight away.

I also use KeepassDX on Android and never have those issues.

[–] speeding_slug@feddit.nl 1 points 1 week ago

I run a similar setup, but with syncthing as the syncing system. Every time I connect the phone to the charger it just syncs the database and I can even sync it outside the home network. Works like a charm. Worst case you get a sync conflict which is easy to solve.

load more comments (3 replies)
[–] korthrun@lemmy.sdf.org 2 points 1 week ago (1 children)

Why not a piece of hardware instead of self hosting, cloud hosting, etc?

[–] el_abuelo@programming.dev 2 points 1 week ago (4 children)

What do you mean?

load more comments (4 replies)
[–] conorab@lemmy.conorab.com 1 points 1 week ago (1 children)

Self-hosting removes the risk of somebody compromising Bitwarden’s servers and adding malicious javascript to send off your master password to a bad actor instead of just processing it locally like it’s designed to.

[–] el_abuelo@programming.dev 1 points 1 week ago (1 children)

I think the chances of such a breach are vanishingly small. I wonder if I'm right though.

I think anyone capable of pulling off such a feat is not interested in my data, and probably more likely looking for government employee access etc..

load more comments (1 replies)
[–] Mubelotix@jlai.lu 0 points 1 week ago (2 children)

Premium features for free. There are no benefits in relying on a third-party

load more comments (2 replies)
load more comments
view more: ‹ prev next ›