![]() ![]() You’re relying on Firefox or Chrome to keep malicious web pages or extensions out of your password vault. Not only that, but that unencrypted data is part of your Chrome or Firefox browser process. Once you enter your passphrase, all that important information is sitting around in memory in an unencrypted state. Just like 1Password and LastPass, the BitWarden browser extension has full access to your password vault. Bitwarden’s health service threw up a lot of red flags on that old junk!īitWarden will always be a little scary. Ancient websites that I will probably never log into again. I have a lot of old cruft in my KeePass database. Have your email addresses been compromised in a password leak? Are you using passwords that are commonly found in those leaked databases? Are you still using weak passwords anywhere?īitwarden can give you this information. These services are available with a premium Bitwarden account, but what on Earth does that mean?! Bitwarden will correlate information in your password vault with leaked password databases. Password hygiene and vault health reports The free Bitwarden account would meet my needs, but the premium account was inexpensive enough. I’ve been trying to offload most of that work to other companies, though, and this is definitely inexpensive enough to outsource. When I had a server colocated downtown, I would most definitely have set this up. If you already have a server out there somewhere, they offer a Docker image that you should be able to have up and running in no time. You can host your own Bitwarden service, and it looks easy enough to set up. I’ll keep you updated over the next few months. The process was painless, and I haven’t had any problems signing into anything yet. I signed up for an account, upgraded to a premium account for $10 per year, and I imported my KeePass2 database. I’ll tell you some of the details of my findings soon, but I didn’t find anything that scared me away. I’m using Bitwarden, but I’m not hosting my own serverĪ few nights ago, I did a bit of research on Bitwarden. With Bitwarden, our Netflix and Hulu passwords won’t get out or sync between mine and my wife’s KeePass databases! This wasn’t a deal breaker for me, but I imagine it will come in handy. They allow you to share passwords with your friends and family. An open source LastPass equivalent that I could host myself sounds awesome!ġPassword and LastPass have one particular feature that KeePass will never be able to have. ![]() Then I saw it mentioned again a few days ago, and I realized that Bitwarden is attempting to be a replacement for LastPass or 1Password. I just assumed it was another attempt at a KeePass replacement. Last week, I saw Bitwarden mentioned in a comment thread somewhere. To tell you the truth, I probably would have kept using KeePass for years. Once I had it set up, it worked just fine. Getting sync going was easy, but required a bit of effort syncing to Android. KeePass’s integration with Chrome and Firefox works just fine. Outsourcing My Self-Hosted Cloud Storage at Īll this stuff works fine.There’s encryption all over the place, and for the most part, the database doesn’t leave my control. ![]() The storage devices on my desktop, laptop, tablet, and phone are all encrypted. The Android Seafile client doesn’t actually sync files, so I use SyncThing to keep the database on my phone up to date. That keeps the database in sync on my desktop, laptop, and tablet. I store my KeePass database file in an encrypted Seafile library. Syncing your database between your devices is a problem you have to solve on your own. There are plugins to integrate KeePass2 with various web browsers, and it has the ability to automatically type your username and password into various dialog boxes. Your password database is stored locally, and KeePass has a crufty but usable interface that lets you keep track of usernames, passwords, and URLs. KeePass is an encrypted password database. The only change I made was to upgrade to KeePass2 at some point. I couldn’t even take an educated guess about when I started using it. I’ve been using KeePass for a long, long time. What have Pat and Brian been up to lately? To find out you can check out the latest episodes of The Butter, What?! Show Maybe you’re an old man like me, and you’re still using KeePass. You’re probably using something like 1Password or LastPass to store your passwords. I’ll be surprised if you’re not already using a password manager. We can’t reuse passwords, because when a random Internet forum’s database is compromised, we don’t want anyone to use that data to steal our Slashdot, Reddit, or bank account. We can’t use simple passwords, because they’ll be easy to guess or brute force. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |