I dont agree with many things apple does at all, and I also think their password manager has flaws like revealing usernames without authentification.

It is pretty handy though, to have a file where the entries are stored unencrypted, and if the password manager detects an entry it prompts to decrypt exactly that field, maybe with a fingerprint.

KeepassDX needs to run in the background and be completely unlocked to even detect apps or password fields.

Do you know any existing app that can do this?

  • Devjavu@lemmy.dbzer0.com
    link
    fedilink
    arrow-up
    2
    ·
    1 year ago

    Which would make it hardly accessible outside of your home. Still not locally saved as well. And imho if he is not sure which password manager he should choose, he should maybe not self host just yet.

    • Ekpu@lemmy.world
      link
      fedilink
      arrow-up
      4
      arrow-down
      1
      ·
      1 year ago

      Bitwarden keeps a local encrypted copy of the database and only connects to the server for synchronisation.

        • Oisteink@feddit.nl
          link
          fedilink
          arrow-up
          2
          arrow-down
          1
          ·
          1 year ago

          Maybe because it seems you claim self-hosting bit warden is cloud only and that self-hosted is not accessible outside the house?
          Note: I do not recommending self-hosting bitwarden

          • Vexz@kbin.social
            link
            fedilink
            arrow-up
            2
            ·
            1 year ago

            Note: I do not recommending self-hosting bitwarden

            Why not? I have my own instance running on my NAS and I love to have it self-hosted because this way I keep the passwords where I know nobody else can get them.

            • Oisteink@feddit.nl
              link
              fedilink
              arrow-up
              1
              ·
              1 year ago

              Because a password manager is critical and if you ask me I’d say no. If you have the know how and understand the risk you won’t be asking

              • Vexz@kbin.social
                link
                fedilink
                arrow-up
                1
                ·
                1 year ago

                Well, I work in the IT so I know some stuff about security in the digital world. But these systems (password managers in general) are built to be secure and not just tell every password they store without some security measures. Yes, I know there can be security holes, bugs and so on. But that’s why these tools get thoroughly tested.
                You always have to take risks in the world of computers. So what’s the point? Being as secure as possible? Then better not even bother with password managers at all because they all can have security holes.
                It’s more about how much you trust a password manager and how much you trust yourself in how cautious you use it. The risk is always there.

                • Oisteink@feddit.nl
                  link
                  fedilink
                  arrow-up
                  1
                  ·
                  1 year ago

                  Ok. I’m quite the IT person myself, and I can say I’d not recommend you running your own either.

                  • Vexz@kbin.social
                    link
                    fedilink
                    arrow-up
                    1
                    ·
                    1 year ago

                    That’s fair. Everyone has a different opinion. But I think it’s always better to self-host Bitwarden than using the cloud service because then your passwords are stored in a place where you have full control of. Afaik if you use the official Bitwarden vault your passwords are stored on some Amazon servers.