I personally moved to Bitwarden from 1Password due to the cost, and I believe for an average user, Bitwarden is definitely the way to go as it is very value-friendly (at $10 USD/year), and it is open-sourced unlike many other proprietary password managers. 1Password may get more features, however it being $3.99 USD/month, many users don't need the extra security features and I strongly believe that common sense is the best security for any user.

Started with LastPass many years ago - but has changed to 1Password just last week.

Bitwarden and Dashlane were close contenders, but I found that 1Password's sharing feature was better in my usage scenarios.

Keepass + Syncthing awesome combination

Bitwarden

I use 1Password because I got my wife to use it. The paid plan is worth it just for the fact that she also uses it. If it was just myself, I would probably self-host Bitwarden.

Used last pass for years until they decided no account sync for free users now I use bitwarden which I find is fantastic.

Is it bad that I just love built-in Chrome/Google auto-fill manager? Is this not safe? Autosync to Android does it for me + the fact that i can auto-generate and save/fill passwords seamlessly without having to switch between apps

I haven't heard anyone mention Google password manager, which is the one I started using recently. I assume very few people trust it because... Google?

Having a password manager is incredibly useful when someone dies and you need access to their accounts. I think bitwarden and probably others lets you grant emergency access to someone, definitely leaving it in my will.

I just use the Google password manager so i don't have to put everything in every time i log into an app or a website

I personally use Firefox's built-in password manager and it works great for me. I use Relay to generate email masks and enter in random passwords that are saved and synced across my devices. It's been very helpful!

KeePass

Bitwarden's browser extension is great, which is something I can not say about their mobile app which is slow and not very user friendly. It does, however, make my passwords safer since I tend to use random ones.

Password managers are much better than using the same password again and again. I use 1Password.

I don't but I should even though my threat level is zero.

But then isn't a single point of failure a problem? I guess we use these to make life easier with strong passwords, but what if the cloud with sync gets leaked, or someone keylogs my pass manager then I lose all passwords not just those incidentally affected by a leak or hack?

I dont use password managers.

I just use a set of random words + random numbers, usually something related to the website, the time period (like major global events), maybe just the mood I'm in when I created the password.

Example: For Lemmy, I might use IslandMazeMouse0216 (I do not use the password btw, never used this before and now never will, don't try hacking me lol)

"Island" because the fediverse is like a bunch of islands, that formed together into one fediverse, "Maze" because this shit is confusing, and "Mouse" because the Lemmy logo looks like a mouse, 0216 because of June 12, the day the protest began, 0612, but reversed, but not reversing the 0, so 0 216.

Now I feel dumb for explaining, but also want to hear opinions.

But you see, it doesn't matter. Most websites have login limits so you can't really brute force the password. I just hate "password managers", if I were getting old, I'll probably just put my passwords inside a Standard Notes note, or just put it in a txt and use 7Z AES256 and upload it to a few cloud services.

For offline passwords, like a Windows Veracrypt encryption password, I use 5-8 random words with 5-7 random numbers and increasing the PIM.

For mobile, I use like 16-25 digits numerical pin, alphanumeric passwords are just too hard to type. I've been experimenting with long alphanumeric password + biometric, or a pin, and honestly idk which is better. I don't want someone accessing my phone while I'm sleeping, I might forget to turn off biometrics before I sleep.

I'm not gonna encourage everyone to do what I do, I am not a security expert, just some dude on the internet, but I just want to share how I deal with passwords. Feel free to criticize any flaws. 😅

I use keepass and host the files "myself", means in my clouds, keepass droid is a nice adfree app, I just like to have control over my passwords after I read some articles about password "safes". It's a bit effort to setup, but since then works perfectly.

Using Bitwarden for password manager, Aegis for 2fa, been working great for me so far.

I would not recommend cloud based password manager. We all know what happened to LastPass. But locally encrypted ones are great. I love to use KeePassXC.

Using a password manager to keep your passwords safe is a good practice. I’m still a bit hesitant to use the cloud based options. Even though all is encrypted. I use KeePass and OneSafe. Currently looking into the new password manager from Proton to investigate whether that is a good and practical one to use.

I'm probably going to get grilled for this but I've Been using Firefox's Saved passwords, I really don't need anything better.

1password family user here. I cringe nowadays when people still try to remember their passwords and accounts and say they have a "good" system. It's a necessity nowadays. Sounds like the consensus favorite around here is Bitwarden. Anyone wanna tell why they prefer it over 1password? Is it because it's self-hostable?

Dang you guys made me feel bad for using Microsoft Authenticator lol.

Started using RoboForm on Windows XP, switched to Mac, used several there, came back to Windows 7, used LastPass and then dumped LastPass after they were acquired by LogMeIn which, as predicted, poorly managed the product to where people are getting locked out of their passwords. So now its 2023 and I'm back on RoboForm.

(If anyone has any reason to not use RoboForm I would appreciate, however I need to use password sharing occasionally, which is a feature) Edit: just realized this is an Android group but RoboForm has a pretty good Android app, FYI.

Hot take here: Password managers are a solution looking for a problem.

I use KeepassDX, one of the variants of Keepass. I don't know if it's any better or worse than the other variants but it has worked well for me so far.

The advantage is you are hosting your own password database so you aren't reliant on some cloud platform that inevitably gets hacked.

Absolutely recommend it to others. It's much safer than reusing passwords, which is what inevitably happens if you don't use one. I use Bitwarden, but KeePass is also good if you want to avoid the cloud. Or you can use a paper notebook, but that's less convenient.

Another vote for Bitwarden!