Rootiest

joined 1 year ago
[–] [email protected] 75 points 1 year ago* (last edited 1 year ago) (4 children)

Relatable.

Except it's missing:

5b. Try 100 different things, none of which fix it and several of which will create other problems later

[–] [email protected] 1 points 1 year ago

Oooh thank you!

Can't believe I missed that

[–] [email protected] 1 points 1 year ago

Like the other commenter said, typically websites are less locked down.

It's simpler to sandbox the browser and prevent unauthorized software from running than to block out most of the Internet and deal with complaints all day about the web restrictions

[–] [email protected] 1 points 1 year ago

I also use aYubiKey in VaultWarden but the key is not used to generate the encryption keys, only the master password is, so you don't get that added security and benefit of the encryption keys rotating every time you save the DB.

[–] [email protected] 0 points 1 year ago (3 children)

You sure can.

But that's not perfect.
Often businesses will lock down their computers to prevent unauthorized software from running at all, not just installing.

[–] [email protected] 0 points 1 year ago

Ok that makes more sense lol

[–] [email protected] 0 points 1 year ago (2 children)

Ah, I couldn't find that option.

I can add custom fields to an entry but I can't designate them as "protected"

Of course I also thought at first that you couldn't attach files but I guess you can, they just didn't seem to transfer over from my KeePass DB

[–] [email protected] 6 points 1 year ago* (last edited 1 year ago)

I've had some trouble with NextCloud as well. For me it just feels sluggish and bloated.

Someone in another thread here said "NextCloud can do everything, but it doesn't do anything particularly well" and that seems to mirror my experience with it for the most part.

Of all the self-hosted containers I've set up NextCloud gave me the most trouble

[–] [email protected] 3 points 1 year ago* (last edited 1 year ago)

I'm using randomly generated 64-character passwords with upper/lower-case letters, numbers, and symbols.

I prefer not to manually enter them every time.

Also someone could find and photograph your notepad and then all your passwords are compromised in one go.

[–] [email protected] 0 points 1 year ago (2 children)

and there even is a „no phoning home“ version that strictly runs locally.

Shouldn't that be all the versions?

Why would a password manager app that uses a local database need to phone home?

[–] [email protected] 19 points 1 year ago* (last edited 1 year ago) (13 children)

I have both set up right now.

Things I like better about KeePass:

KeePass doesn't use the cloud, you don't have to worry about the server getting compromised or going down because there's nothing public-facing to hack. You always know where your password database is.

KeePass lets you encrypt the database with not only the master password but also using the challenge-response from a YubiKey. That means every time you save your DB the encryption key is rotated and the DB is actually encrypted by two authentication factors.

While both can add custom fields to an entry, I like that KeePass has the option to set fields as protected so their contents are hidden like the passwords.

Things I like better about VaultWarden:

Convenience.

You can log in to your VaultWarden account on any device from the browser. KeePass requires some software to access the DB.

The VaultWarden companion software is just better. It just does autofill better. KeePassXC/DX work well but just not as well as the BitWarden software.

Other thoughts:

Syncing passwords between devices with KeePass requires 3rd party software like SyncThing. If you break/lose/etc your VaultWarden server you could lose all your passwords with it.

Always make/test backups.

[–] [email protected] 34 points 1 year ago

I suspect cigarettes generated a lot more litter but with a lot less precious metals in it

view more: next ›