Bitwarden with YubiKey
Use bitwarden but never heard of YubiKey. Quick search on google gave me nothing. What is it?
I use it as my 2nd facor authentication.
- Bitwarden (audit results)
- KeePassXC (audit results)
Neither is better as they offer different things. Both are audited by third parties.
1000% bitwarden. LastPass gets breached too often and have bait and switched users that were using the free version. Jump ship if you’re using them, export them and import into bitwarden.
KeePassXC
Why specifically KeePassXC instead of KeePass?
Less support for KP on Linux. Needs Mono to run. More importantly, AFAIK, it won’t interface with a browser extension (on Linux). So KP is more Windows oriented.
Lack of 3rd party audit. Only KeePass 1.x was audited independently.
Depends on your definition of secure.
A pen and paper can’t be hacked
Something to keep in mind is that security isn’t just about preventing attackers from accessing it. If that was the only criteria, then the most secure thing would be a flash drive buried in concrete.
Security is also about accessibility.
To that point, I believe the best password manager is subjective. That being said, I’m going to throw out a recommendation for 1Password. If you use it right, it balances security with convenience really well.
Not using one. Anything and everything that is connected to the internet in any way what-so-ever has at the very least some level of insecurity and vulnerability.
The most secure thing to do would be to host your own server. You can do this with Bitwarden. Remember though that if you lose your server, you lose your passwords. You can also just use Bitwarden and their cloud service. It’s free and open source.
The most secure thing to do would be to host your own server.
That is assuming that you believe you are more secure than say Bitwarden the company, especially if you are hosting publicly.
Any known password manager is a target.
If you have a Linux PC you can create a partition encrypted with LUKS and save the passwords in txt files. Even this solutions has a small risk because when you open a file it might end up in the cache. But it is still safer than Keepass.
Downside. It might take a little bit more than few clicks to access to your passwords. But I suspect that the concern over too many clicks is inflated by the big corporations looking to dumb down their users.
KeepassXC should be secure enough, you can even use a hardware key.
But make sure to use version 2.54 or newer.
