Looking at password managers again. KeePass & Bitwarden are the top rec’s from Nostriches so far.
I’m also getting rec’s (ads) for Proton Pass. Mostly recommended by ProtonMail 😉
Seems solid, especially if you’re paying for their email service. Any reason not to use it? Problems, etc.?
My basic assumptions:
Open source ✅
Reputable business ✅
Offline backup vs proton’s server ❔
Pay with Bitcoin ✅
#asknostr
#privacy
#infosec
I’ve only heard good things about KeePass.
I pay for proton but still use bitwarden BC I self host it and also eggs and baskets and whatnot
Good point. Assuming there’s no way to self-host protonpass?
Been using Keepass for close to a decade and also use Bitwarden. Both have tradeoffs and are both fantastic.
Best part about both of them is that they don't try to dox you and call you a fascist for no reason.
Keepass plus syncthing to keep it up to date on the appropriate devices is the way to go.
Does syncthing work on iOS?
Syncthing only syncs when you connect for a brief period, as ios doesn’t permit a daemon running full time in the background. Another limitation of the ios operating system is it does not allow me to open a file directly, but I must import it into the app. This may be a limitation of the app along with the ios operating system.
Thanks for the thoughtful feedback, duck! I’ll dig into this option some more as well 🙏🫂🤝🫡
I've used keepass very well with Dropbox in the past and then Nextcloud when I decided I wanted full control of my storage, but I simplified and just started using syncthing and it works well enough for me. (was already using for other purposes.)
Btw, cool name! Did know that along with being the name of a Babylonian king, “Nebuchadnezzar” is also a term for a 15-liter bottle of wine? Like literally 20 bottles (or 100 glasses!) in one single bottle 🍷🤤
Here’s one next to a standard champagne bottle 
Id use vaultwarden over bitwarden if you go that route. Can be hosted on something as small as a pi and is a bit stripped down (ie bitwarden has a lot of Enterprise features that an average user doesn't need.)
Yep vaultwarden
That’s great insight, thanks! Can I host it on an old MacBook Pro that currently stores a Bitcoin timechain?
What about on my daily driver laptop?
Or is it best practice not to have this on a computer you use for other stuff?
I would try to keep anything Bitcoin related, separated from anything else that you're hosting but yeas you could. And I would also try to keep the server off of your daily driver.
The way I have it working for me is I have it running on a Raspberry Pi at home. It's not reachable outside of my home network because I figure I'm not going to be making a lot of accounts while I'm out and about. Both bitwarden and vaultwarden work in a read-only mode when not connected to the server. And if you do happen to make a new account somewhere, it doesn't really matter which device you're on, but everything will sync up once you get back home and connect to your local server.
Okay thanks! This is great info. That’s what I was thinking (Bitcoin separate device) so wasn’t sure if that also extended to passwords etc.
Now what about something like a start9. Might ask Santa for one this year lol. Bitcoin & pw manager & other self hosted content on the same machine… a problem?
I guess the way I think about it is I really don't want my bank to be intermingled with anything else. It just gives more attack surface to your bank because there could be some critical flaw in your password manager or some other application that would give people access to your bank.
So for myself, I keep my cor node and my lightning node and my mempool explorer, anything Bitcoin related on one machine, and then I have other machines for various things that I host at home, like my search engine and my password manager and other things.
