• Coeus@coeus.sbs
    link
    fedilink
    arrow-up
    0
    ·
    1 year ago

    The most secure thing to do would be to host your own server. You can do this with Bitwarden. Remember though that if you lose your server, you lose your passwords. You can also just use Bitwarden and their cloud service. It’s free and open source.

    • Lepsea@sh.itjust.worksOP
      link
      fedilink
      arrow-up
      0
      ·
      1 year ago

      I can’t really host my own server right now (maybe later when i have my own place) and after a bit of research bitwarden is the best free option but somehow it have 3.4 ish rating in my region

    • Panja@lemmy.world
      link
      fedilink
      arrow-up
      0
      ·
      1 year ago

      The most secure thing to do would be to host your own server.

      That is assuming that you believe you are more secure than say Bitwarden the company, especially if you are hosting publicly.

    • axzxc1236@lemmy.world
      link
      fedilink
      arrow-up
      0
      ·
      1 year ago

      Or use something like KeePassXC that uses a database file, no internet required (other than downloading software).

  • kn33@lemmy.world
    link
    fedilink
    arrow-up
    0
    ·
    1 year ago

    Something to keep in mind is that security isn’t just about preventing attackers from accessing it. If that was the only criteria, then the most secure thing would be a flash drive buried in concrete.

    Security is also about accessibility.

    To that point, I believe the best password manager is subjective. That being said, I’m going to throw out a recommendation for 1Password. If you use it right, it balances security with convenience really well.

  • somedaysoon@lemmy.world
    link
    fedilink
    arrow-up
    0
    ·
    edit-2
    1 year ago

    KeepassXC unless you need to share passwords, then Bitwarden but you have to figure out hosting or pay for it. I have been using Keepass for like 20 years. In the last 4-5 years, I use KeepassXC and it gets synced to other devices with syncthing.

    • DebatableRaccoon@lemmy.ca
      link
      fedilink
      arrow-up
      0
      ·
      1 year ago

      Bitwarden has a free tier on their service where you can share passwords with a single person. It’s not much in that regard but it’s all some people need.

  • Vaggumon@lemmy.world
    link
    fedilink
    arrow-up
    0
    ·
    1 year ago

    Not using one. Anything and everything that is connected to the internet in any way what-so-ever has at the very least some level of insecurity and vulnerability.

    • Lepsea@sh.itjust.worksOP
      link
      fedilink
      arrow-up
      0
      ·
      1 year ago

      I Used to think like this but having multiple different accounts with multiple different password on different site is tiring. Just for this week i forgot my password on 3 different site which apparently i already change 1 of those site password last week. Now i second guessing myself every time i try to log in on a site

    • number6@feddit.nl
      link
      fedilink
      English
      arrow-up
      0
      ·
      1 year ago

      Just thinking out loud. If your paper record is actually QR codes, then you could scan them into your device as you need them. So you wouldn’t have to type some long, complicated sequence by hand.

  • sock@lemmy.world
    link
    fedilink
    arrow-up
    0
    ·
    1 year ago

    google keep but dont label ur passwords so the hackers cant use them (and neither can u)

  • keyboardpithecus@lemmy.basedcount.com
    link
    fedilink
    arrow-up
    0
    ·
    1 year ago

    Any known password manager is a target.

    If you have a Linux PC you can create a partition encrypted with LUKS and save the passwords in txt files. Even this solutions has a small risk because when you open a file it might end up in the cache. But it is still safer than Keepass.

    Downside. It might take a little bit more than few clicks to access to your passwords. But I suspect that the concern over too many clicks is inflated by the big corporations looking to dumb down their users.