You must log in or # to comment.
keepass and syncthing are free.
Wish they handled it better, but I knew about this a while ago, and the price is more than reasonable.
A decade without a price hike is extremely generous, especially at how cheap their plan was.
They are a FOSS company that makes a fantastic product I’ve been happy with for years, I’ll gladly pay less than $2 a month to support them. Their server code is licensed with the AGPL, the strongest copyleft license there is, which gives me a lot of confidence.
Worse case scenario, they enshitify down the road, we are protected via the open source implementations. We’ve seen this many times in the past, Red Hat > Alma & Rocky Linux, Citrix Xen Server > XCP-ng, Terraform > Open Tofu.
Pay for your open source software, folks 💖
Paying for good software should be normalized again. One way or the other you’ll always pay. If you don’t pay with your money, you pay with your data.
Selfhost.Vaultwarden.
Boy am I glad I self hosted … but sadly this means they’ll likely put a stop to that too eventually
What makes you think this? Server costs have gone up, Bitwarden has increased their pricing. It’s a big jump, but it’s also still very very affordable (less than $2/mo). How is this indicative of them changing behavior in the future to start trying to take down legally licensed open source projects like Vaultwarden?
It’s the natural progress curve of a forprofit corporation
vaultwarden != bitwarden. VW is a complete rewrite. they can’t stop vaultwarden.
I just picked up a NitroKey to have as a backup too but like others have said its open source. Its nice to use the official client now but if there’s demand I’m sure an alternative will be implemented.
It’s open source, there will be forks. I’m not worried at all.
Yeah, not handled well. They’re doing slimy corpo bullshit.
On the other hand, I like that they’re open source and don’t block stuff like vaultwarden.
I hope they can take the extra money and make the product better. Cuz I definitely don’t love Bitwarden, but it’s a better alternative than 1Password.
On the other hand, I like that they’re open source and don’t block stuff like vaultwarden.
YET
Quite easy to fork the client.
Getting it to install through the various stores? Probably not.
Lol for years I have been wanting to switch from KeePass to Bitwarden. Mainly cause the UX/UI felt nice to me.
My initial hesitance was that I didn’t love the idea of my passwords being on someone else’s servers. But I found out about Vaultwarden. So I kept my eye on it’s development and longevity. Now that it’s well established, I’d say I trust it now. Next I figured out a way to selfhost without exposing Vaultwarden to the public. Everything seems to be lined up for me to switch.
A few months ago, I decided it was time. After moving my passwords over and getting a flow working, I went to sort by most recent… Oh wait. You can’t sort by date. You can’t sort lol I sat with this for a few hours and reverted back to my trusted and working KeePass flow.
EDIT: This is one of the most voted feature requests. Also, it’s just table stakes! It’s crazy they don’t have this feature 😂
https://community.bitwarden.com/t/sorting-options-by-date-of-modification-addition-last-use-etc/2484
Why do you need to sort at all? Just search for your password… what am I missing?
You can’t fathom why someone would want to… sort a list…?
I don’t know how to answer this. I think you’re serious, but I can’t tell. Want to read that community post I linked where over 600+ people voted for the sorting ability?
Not really. The search bar at the top will filter for anything you’re looking for. Sorting is redundant.
free tier is totally fine for 99% of people. if i want a cloud, i pay for a cloud. hike was totally forseeable. its an ass move tho to birry info in a blogpost noone ever read.
yeah i was like, shit 0 times 100 is 0, with a 0, carry the 0…
I get an email very close to renewal.
Not a great move in terms of transparancy. :/
Lawl I pay for the yearly thing and I’ve never used any paid features, I just wanted to support them. I’m okay with the price increase, but it definitely would have been nice to have an announcement maybe in December or spending the they’re planning that. I wonder if I’m grandfathered into the same price I’ve been paying? Ehhh too lazy to find out. I’ll pay 20, but yah some transparency or forewarning would have been nice for a lot of peeps.
Sadly you’re not grandfathered. You’ll get a 25% discount for the first year if you’re already a paying customer.
Ahhh that’s okay, thank you for the info!
Wasn’t this announced months ago? I know I heard something about it, probably on here even. Either way 20$ a year for Bitwarden is still well worth it.
Bitwarden’s Premium version now costs $20 per year,
This is what you’re up in arms about? $1.50 a month?
It’s not about the price itself. It’s about the lack of transparency. Not being open with a 100% increase is not a good look.
I kept procrastinating on self hosting it, but now i will do it tonight and migrate to my own instance.
Problem solved.
Bitwarden has a paid version?
Yes, it includes things like a TOTP manager, text file storage, family sharing, etc… Nothing super groundbreaking, but it’s some quality of life stuff that plenty of people have been happy to pay less than a dollar per month for.
Yes indeed.
Time to self host
To save $10/mo?
20/year
How did you get two things wrong in a two part component?
$10/year
Can someone please help me understand why you would want to have your passwords in the cloud? I’ve been using Keepass for about the past 15 years. I always just sync the db between computers/mobiles. Its never been an issue. Is having it in the cloud really that big of an advantage?
Not interested in selfhosting and risk a data breach.
It’s imple: Who is better equipped to combat a hack? You or Bitwarden?Definitely me.
there’s also the fact that hackers probably don’t know I’m hosting it. Where as bitwarden hosted makes for a very very juicy target
False sense of security.
The moment to fuck up certificate issuing and don’t use a wildcard certificate, the subdomain is public and will be probed to hell and back. And due to regex, probably by bots specialized to probe password vaults.
Wish you best of luck and security.
But I’ll stay here :)You do realize that a keepass db is simply an encrypted file, right? Its not a web server.
there’s also the fact that hackers probably don’t know I’m hosting it. Where as bitwarden hosted makes for a very very juicy target
Please point me to where keepass is mentioned
Besides that:
Yes, keepass is only an encrypted database-container but that comes with it’s own downsides.
Syncthing can manage the syncing with stun-servers circumventing the port forwarding issue but it’s also a burden to manage it.Btw a geuine question:
How does keepass manage simultanious access by two devices? Is the database write-locked during an editing action?
And how does it combat silent corruption?I’ve been using Keepass for about the past 15 years.
When you jump into the middle of a conversation, this is what happens. In fact, I already answered your question. Even though you seem to be acting in bad faith, and you’re trying to get a “gotcha” out of me… I’ll elaborate a little
I use a Nextcloud Server (there are other network sync tools as well). I have the Keepass file on the server which syncs with my remote devices. If I make changes to the database, it syncs with the cloud server which pushes the changes to the other devices. I have NEVER had a situation where I needed to make changes to the databases on two or more devices in parallel, nor can I think of a use case. My guess is that in such a situation, whichever file was saved last would be the one last saved by Nextcloud (overwriting the other edit). So your “gotcha” is valid but rare. The other option is to use the web app for Keepass in Nextcloud (not sure if it’s still being developed though, it’s been a long time since I used that).
Anyway, the point of my question was to understand why people use a cloud service for this when it can be easily done (and be safer) than relying on a 3rd party cloud. From what I can tell it’s “convenience”.
convenience. its integrated into the browser and easy to get going. I personally use it for “unimportant” logins. Mainly things that are not government or financial or such. My improtant ones I keep on an external drive that I only pull out for when im doing that type of stuff.
Natural disaster -> no longer can access everything you have online, including bank and insurance accounts, at precisely the time you most don’t want to deal with that.
Natural disaster -> no longer can access everything you have online
Meant as a negative to cloud vaults?
In that case: Bitwarden (as an example) can work offline and records can be exported from it.
Pretty much this. Cloud storage isn’t perfect, but it sure does make proper 3-2-1 backup hygiene easier. 3 backups, on 2 different mediums, 1 of them off site. Cloud storage accomplishes both the 2 and 1, because it is both a different medium and off site.
The fact that you can automatically sync remotely is a big bonus too, because off-site backups historically have a problem where they fall out of date without active attention. For instance, if you have a tape backup system stored in a warehouse across town, those tapes are only as up-to-date as the last time you took the time to drive across town and update them. But with cloud storage, you can automatically sync your folders to keep things up to date in near real time. Plus, your traditional off-site backup is only as secured from things like natural disasters if you’re willing to travel fairly long distances to make them. Those tapes in a warehouse across town won’t survive if the entire town is hit by a natural disaster like a wildfire or flood.
For instance, maybe I make an update on my laptop, and then want to access it on my phone. Even with SyncThing, my laptop and phone won’t sync with each other unless they’re able to find each other on the same network. If I’m not on a trusted network at the time, (e.g. I’m at work on my employer’s WiFi, or traveling and using hotel WiFi) that makes syncing difficult. But with cloud storage, they can both essentially use that as a relay. My laptop updates the cloud, and then my phone pulls that update. Now both devices are up-to-date without actually needing to discover each other on a trusted network.
I’m currently (for the past 5 or six years) using a nextcloud server (remote) where I store the master. My desktop is typically where I make changes but sometimes on my mobile devices. No mater where I edit the database it gets synced. Knock on wood, but I’ve never had as issue.
Personal disaster as well.
If something happens to me and I am incapacitated, or worse, my wife or my brother can request access to my vault and without any action in my side for a week they will have access to my vault. (Emergency access feature in bitwarden)
So it does not add the stress of needing to call ALL the utility companies, bank, school … To reset passwords or request emergency access.
I saw that first hand with my brother in law who had an accident and went into a coma. We were lucky that his computer wasn’t locked and all his password accessible on it.
You can have both and keep a local copy via export once in a while. If the cloud goes down the also most likely your bank website. If you’re talking about other types of secrets then the first sentence will apply
It’s convenient, but not much moreso than keeping the encrypted file in your google drive or whatever and pulling it down once in a while.
I’ve tried storing encrypted blobs including a keepass database on Google drive and I always end up with hundreds of conflict copies
Put the keepass database in a folder and use syncthing to sync that folder.
I just run syncthing on every device that needs my password and they all always have an up to date copy of the database.
What do you use to encrypt the files to begin with? For apps that don’t have an encrypted backup option built in.
Keepass encrypts the database with AES-256 by default so there is already a layer of encryption protecting your passwords.
If you use keepass and want to use a third party service to store your files there’s a way to setup an untrusted mirror which will encrypt the files before sending it to that client. That way you still have your files elsewhere (often on a VPS, seedbox or other host) but that host doesn’t have the unencrypted sync folder just in case you decide to put non-encrypted files in there too.
That’s very helpful information, thank you! I’m using bitwarden but looking into switching.
If you use keepass*
I mean if you use syncthing.
Syncthing is what has the ability to set untrusted hosts. You set a password and the files are encrypted with that password before sending it to the untrusted computer.
Syncing is a problem without a seamless solution. The official syncthing app for Android is abandoned and syncthing-fork isn’t trustworthy and feels vibe coded. Nextcloud is way too bloated for simple vault syncing.
I’m personally warming up to the idea of using
pass.
Im happy with EnPass.
If anyone needs an alternative in a hurry and can’t be bothered to self host feel free to use https://pass.bitnet.dev/
I spun this up for me and my family but I don’t mind sharing with my extended online friends
You can also DM me if you want some space in our nextcloud instance, I’m pretty limited right now but I’m planning storage expansion pretty soon
