I’m trying to move off of 1Password, but it’s proving tricky. Proton’s product is half-baked, so that’s out. Bitwarden and Keepass don’t support several of 1P’s item types. What’s left? #asknostr
Discussion
I'm giving up on password managers. with 2 factor auth, I only have to remember how to get into my phone &/or my email.
Have heard good things about keepass(sp?) but have not used. The Techlore community maybe helpful. (Find link on their YT channel)
LastPass has never let me down
Forgot about them. Didn’t they get hacked a few years back.
They've been hacked multiple times.
Your passwords are encrypted. Maybe some emails got stolen. Still sucks privacy-wise, but not a security problem if you use a strong master password
You sure about that
I’ve used 1Password, Bitwarden, and Lastpass.
Lastpass is definitely the worst for me in terms of UX and the hacks. I would never use it and am in the process of moving my wife off of it. It’s still better than not using a password manager, though.
1Password has the best UX but closed source.
Bitwarden feels like a good compromise, UX is good enough, and it’s open source and can be self-hosted. The hosted version is pretty good too.
They may be closed source, but they talk in depth on how their technical implementation and architecture works in a white paper you can find on their site. They also undergo regular 3rd party audits and publish the results. They've never been hacked or had customer data compromised.
Open Source doesn't mean better security or even that bugs will always get caught before being exploited.
You’re not wrong. It boils down to personal preference on the tradeoffs, I suppose.
I may not be sure about it...
But from first hand experience: I had a relatively low-value seed phrase in LastPass and nobody drained the wallet, which I would expect to happen if it was in cleartext on the dark web
Did you actually read the article? The only unencrypted cleartext was website URLs, and while the attacker now has password vaults, they're still protected by your master password: so as I said earlier, if your password has sufficient entropy to stand up to brute force attacks (and you haven't reused it) then you're still "okay".
I agree this is quite bad, and moving elsewhere would be wise. But no reason to believe your encrypted vault has been compromised
I’ve used keepass for years. Just out of curiosity, what have you found missing from that program?
Out of curiosity, what is it about Proton's that is lacking? Also, self-hosted Bitwarden works well for me. I transitioned over to it from 1Password without issue. I guess it depends on the capabilities you need.
What item types doesn't Bitwarden support?
I'm pretty sure Keepass has a plugin for that
Thanks. Import isn’t the problem. It just doesn’t support many 1P data types.
I moved off 1Pass about a year ago, in favour of Bitwarden. I’m back with 1Pass.
Every time Bitwarden updated it seemed to break 5 things that were working. It became inconvenient.
I still use Bitwarden/Vaultwarden with YubiKey for my 1Pass password and main email password but I couldn’t keep it as my daily driver.
That’s an interesting approach re. master password.
It certainly simplified Estate/Succession Planning. It got to the point where I was trying to be so private and secure, that I had myself confused. How would my family ever sort through this when my time comes? It was time to get back to basics.
I hear you. That’s the ultimate goal.
The latest BW update glitch has been fixed - it was a day after
Why do you want to move away from 1Password?? I've been using them for nearly 10 years, and I can't see how anything could be better.
Yep. I’ve been using for at least 15. Prefer something open source, but it ain’t looking good.
I like Proton's Half-Baked Product 😂
As a paying customer, I am rooting for them, but too many irons in the fire.
What’s wrong with 1Password?
I migrated from 1Password to Bitwarden years ago. Took the hit and manually reconciled all the records after importing the data. It’s annoying but it’s a one-time thing, so it’s worth it in the end.
Cheers, Terry. That may be the way.
Shawn, give perplexity.ai a try. I'm really enjoying Perplexity for quick, reliable answers. It suggests NordPass, Dashlane, Bitwarden, Keeper or LastPass. It also gives steps for export. I hope that helps.
I started setting up vaultwarden on my nostr:nprofile1q9z8wue69uhnvmr9dp58jernwf6xsct8d45hxdn4w5m8gatrdej8v7nhxa3h2cnsw94ksanc09unw6n0d9hkxdp4d44hxu35v4skgtn0de5k7m30qy88wumn8ghj7mn0wvhxcmmv9uq3zamnwvaz7tmwdaehgu3wwa5kuef0qyd8wumn8ghj7mn0wd68ytn6v43x2er9v5hxxmr0w4jz7qg4waehxw309aex2mrp0yhxgctdw4eju6t09uq3wamnwvaz7tmjv4kxz7fwdehhxarj9e3xzmny9uq3wamnwvaz7tmjv4kxz7fwdehhxarj9e5kuen09uqzq44xkafh8j8hhy79809wsmv0lw46nu4pkwqjyp20ekml80mytde8e2sa8d server, but got distracted (as often happens), so I need to get back to it. That's another option.