What do you all use for password management?

Bitwarden

Bitwarden. I've used a bunch of password managers, Bitwarden has been by far the best for me.

The mobile, desktop, and web app are all awesome and work great.

Self-hostable, open source, great feature set. Pricing is super reasonable for their cloud hosted features. Ui is simple, clean, makes sense, and so far I've had zero issues with syncing, saving, etc.

IMO, it's a great example of a FOSS application that looks and functions as good or better than the nicest closed source proprietary software.

BitWarden

I'm happy with Bitwarden.

Self hosted Bitwarden AKA Vaultwarden.

Keepass xc with syncthing

Fellow keepass user here

Definitely Bitwarden

BitWarden in personal life. Recently discovered my corporate overlords approve KeePass (no synching to my phone though). I'm pumped to have literally any pw vault solution.

No joke, 25% of the people in my office have a sticky note on the bottom of their keyboards. I do the odd security audit and I always check.

I started using Bitwarden a few years ago and it's been excellent.

BitWarden has been a trusted, reliable and very useful service for me.

I have been using Bitwarden for a long time and never regretted it. If I wanted to have an offline password manager I would look to KeePassXC.

Bitwarden user here. I used to use LastPass, but it's hard to beat free software that does the same thing just as well.

bitwarden has been great, no complaints!

I’m also using Bitwarden currently.

I use KeePassXC (KeePassDX on mobile) synced via SyncThing for sensitive/important logins, and Bitwarden for practically everything else.

Self hosted Vaultwarden. It's great.

I've been happy with Bitwarden thus far. Used Lastpass back in the day, but migrated over when the renewal prices started creeping up.

KeePassXC synced across my devices with syncthing

Bitwarden! Used to use LastPass but I'm glad I migrated a few years back. I prefer bitwarden now. It's easy to set up, use and multi platform.

I'm a huge fan of 1Password. Previously used pass for years, but there are many ways in which 1Password is more convenient, especially when it comes to sharing secrets with friends/family/colleagues.

I've been using Bitwarden for a while and I have no complaints, works pretty well.

Bitwarden is the way to go. Used LastPass years ago when they suddenly switched to the paid model, then they could get fucked. Been with Bitwarden and haven't looked back (or around for alternatives, super happy)

Started with Lastpass, but migrated to Bitwarden because of open source. And then came the trouble at Lastpass.

I'm just on bitwarden, I was using keepass for awhile but getting the vault moved between devices was a pain, even with syncthing. If it got desynced it was a pain to fix

Bitwarden is my go to

Self-hosted Bitwarden.

Bitwarden here. Was also a LastPass user. Switched when I retired so I did not have to worry about still keeping any old accounts from work. P.s. Also I like that I can have Bitwarden sync on my phone and my laptop.

KeepassXC!

KeePassXC with the db synced by syncthing

I've always just used Bitwarden even before I cared about privacy

I know a bunch of people here have mentioned Bitwarden, but I would like to mention one feature that makes it superior to all others. You can integrate it to services like SimpleLogin, AnonAddy, Firefox Relay, DDG etc. and auto-generate email aliases within the Bitwarden extension. In theory it is more secure to not do this but it is such a huge QoL feature to just hit the randomize button in the extension to create an alias for a new login. It also populates the info field on simplelogin with something along the lines of "Auto-Generated by Bitwarden for: [website]"

Bitwarden

Keepassxc with databases in nextcloud for easy sync between devices

1password is the only one I trust

I use pass

https://www.passwordstore.org/

Android client: https://github.com/android-password-store/Android-Password-Store

Firefox sync. The service syncs between your actual devices. Nothing is stored online. There is a catch. Everything is encrypted using your password. So if you forget your password, you lose all your passwords.

I sync between my Linux desktop (OpenSuse Tumblweed), my Android phone, and my Steamdeck.

keepassxc + syncthing for syncing the database across devices.

Big fan of Bitwarden here.

Bitwarden for personal, 1Password for work stuff.

I much prefer Bitwarden

I primarily use Bitwarden with a self hosted Vaultwarden server on my NAS. But since Bitwarden doesn't support an auto-type feature (not the same as auto-fill) I use KeePassXC on my desktop PC for applications too.

Bitwarden pro. Having OTP and all my passwords on my watch is a life changer.

Been with 1Password for a few years now, coming from LostPassword. I feel it strikes a balance with the whole being secure and being convenient.

Bitwarden. Very happy with it. Been procrastinating setting up my own hosted vault.

Vaultwarden

Firefox browser. 😬😬

Bitwarden, all the way. On my mobile devices, laptops, etc.

I used to use KeePass but the UI is so antiquated and features also just haven't kept up. Bitwarden free, open source, audited, syncs and works everywhere flawlessly, and I can self host if I ever want to. It's great.

Bitwarden. It works on iOS, windows and Linux.

KeepassXC. Migrated from KeepassX which I used for a long ass time (over a decade? Maybe more!)

Like some others here I use bitwarden, but I'd prefer to move to selfhosted vaultwarden. I haven't taken the leap of opening my server to the world so my family's devices can stay synced. Also, I don't trust my admin skill with server stability and security.

KeepassXC on PC

KeepassDX on Android

The database is synced between devices with syncthing (selfhosted, stuff is synced using wifi) so my database is not uploaded to the internet

One more for Bitwarden. You can even run your own local server and avoid using the cloud.

KeepassXC :)

Been very happy with Bitwarden for quite a few years now.

I use Bitwarden in all my devices. Never gave me a reason to look for anything else.

I use bitwarden and it's great! Will test out Proton Pass when they open it up.

Bitwarden FTW

Bitwarden is the way.

I've been using KeePass for a very long time. It works, and the Google Drive plugin syncs without any issues. I have it set up on multiple devices, all pulling from my Google Drive, and each instance of KeePass has it's own key file. So even if someone got a hold of the main database, it's useless without the key file, which is only hosted on specific devices.

Self hosted vaultwarden for personal use and pass at work.

KeepassXC and various other KeePass2 compatible apps depending on the OS I happen to be using.

KeePass still too! I use keepass2 on Android and it's basically changed my life. Auto fill w/ bio unlock...it's the BEST

+1 1Password (coming from LastPass) this manager is really great. Good mobile, desktop and browser support.

Password managers are for suckas, I just use password123 for everything.

I just use hunter2 as my password literally everywhere. Otherwise it's easy to forget if you use more than one. I also use Bitwarden to manage all those passwords. It's really easy cuz you only need to type "hunter2" only once when you log in. After that you can just click it.

Keepass is great, use it at work.

1Password for my personal stuff

Lastpass has had too many leaks / issues for me to ever trust them again

Selfhosted Vaultwarden and the Bitwarden apps.

Gives me access to all my things basically any time and anywhere. Its pretty neat. And if I don't want it anymore, I can export the data and just nuke it - and it's gone. :)

Bitwarden since its open source, easy to use and cloud sync is sooo great

Kepass (and Keepass2Android) + Nextcloud instances to keep sync and backups

Selfhosting Vaultwarden (Bitwarden)

Unix pass! Because I have to be different apparently

If you're into DIY, you can get a very robust system set up with GnuPG, rofi-pass, and git. Plus I can even push passwords to my phone using Android-Password-Store.

Self hosted Bitwarden out of my house. I bought an old server a while back and it's been running like a champ. The official version s a bit cumbersome, but it seems to work really well. No complaints.

I've been hosting my own vaultwarden server for a few months now and it's been great, especially being able to move my TOTP stuff off of my phone

Keepass and Strongbox.

I don’t like the honeypot that is anything too centralized, even if it is e2e encrypted. I’d be worried about exploits or compromised client payloads.

KeepassXC with syncthing

BitWarden for me. I got the premium plan so I use it to share family password with my Partner (one collection), my dad (a second), and my in-laws (a third). I've definitely gotten my money's worth and I've been happy with it.

Looking forward to seeing if the passwordless (like key vaults) works for my automated processes, but even if they don't, it's been fairly good for me and has a decent contingency (self-hosted).

1Password because we’re an Apple household (aside from my work laptop, and even then it’s easy enough to use through the web interface). The main thing that irks me about it is that they keep offering discounts for new subscribers but longtime users have to keep paying the full price. But I’ve been considering switching to Proton for email, and they’re in the process of rolling out a password manager that seems similar so I may be switching to that sooner rather than later.

I used KeepassXC and Keepass2Android but the implementation seems a bit janky at times and the need to sync it manually or let it sync via a cloud is not all that comfortable.

I switched to Bitwarden about a month ago and consider it still as a test phase for now. I'm not that happy with just having my passwords lying around on a random cloud server.

Dashlane here. I self host a lot and could definitely use Keypass or something locally, but the risk of losing all your passwords if I fuck something up was too great. I'll pay professionals.

I use 1password, I used KeePass for years but it didn't work will on Android so I moved on.

I used to use Dashlane but when I found out bitwarden was free I just started using that

I used to use KeePass, but switched to https://www.passwordstore.org with a YubiKey after discovering how janky the KeePass 2FA system is designed a while back.

Another vote for Bitwarden. Works on everything I use!

Another happy KeepassXC user here! Keepass2android on Android. I keep the passwords synced with nextcloud

KeepassXC on desktop, KeepassDX on Android, file on Google Cloud

Using bitwarden for company and private purpose in Smartphone and laptop with Browser integration since two years ans beeing really happy

I’m entirely in the Apple ecosystem, so I use the built in Keychain, synced across devices through iCloud.

It would be Bitwarden otherwise.

KeePassXC and Keepass2Android auto-synced with my Nextcloud instance. Works great cross-platform for Linux/Windows/Android.

I know what you mean, trusting a SaaS provider with my master password list always felt like a bad plan.

For work I use 1Password, for at home I use Bitwarden.

1Password is a genuine life saver.

Bitwarden all the way

I use Bitwarden and honestly couldn’t be happier. My partner and I both use it, so it’s incredibly easy to share any credentials we both need to use. It also works great on every platform I’ve personally tried it on, and I like that I can use it for totp 2fa as well.

Bitwarden. I left LastPass about 3 years ago and haven’t looked back. I pay for bitwarden so I can use the TOTP feature and because i can’t wrap my head around the recovery process for my wife if something were to happen to me. I think another, more technically fluent human will need to be involved if that ever comes to pass.

KeePassXC and Nextloud to sync things between devices…

I use OneNote, with a bunch of coded words that mean other things and mix and match those to make longer passwords that are all different. Because I'm too lazy for a real app, and this is secure enough and useful enough.

Bitwarden user here.

Bitwarden, I use it everywhere. I even wrote a Bitwarden app for my Linux phone.

I rolled my own, actually. I don't store any passwords (even encrypted). Instead, I just append the site name to my base password (which is in my head), hash it, and base-52 it. (I also start each password with the same uppercase letter, lowercase letter, punctuation mark, just to ensure it gets past any bullshit filters)

I like that there's nothing that can be leaked (except what's in my head) and nothing to be lost and nothing to back up.

I just lead the migration from LastPass to 1Password for the business I work at. It was really prompted by the breaches at LP and their poor handling of it. For personal stuff, I just did whatever I was doing at work because the business plans come with free licenses for personal accounts.

At the moment BitWarden, but I'm looking to go to selfhost a VaultWarden server. I've alrrady done it one time with a raspi but after some week it crashed out. Next time I'll use a x86 machine.

Selfhosted vaultwarden instance

KeepassXC on desktop and Strongbox on mobile. Syncing works through any cloud provider of choice

Enpass, no puplic hosting. Clients in phone and PC. You can use your own services if you want to upload or keep it in a folder on the phone.

Bitwarden, easily. You can self host if you want to for added privacy. I don't, but the option is there.

I've been using KeePass and KeePassdroid for at least 10 years now. "Sync" my dB through one drive, only because at one time we were allowed to use our personal one at work, but since they blocked personal folders in favor of corporate ones it is much less handy.

i’m using KeepassXC!

Enpass. I sync my vault with my Nextcloud, but it would also work completely offline or with direct-sync between my devices.

NextCloud

Maybe a tangent, but what are the security implications of a password manager? It seems like it would replace many individual things that can go kinda wrong with one big single point of failure, which frightens me 😆

Happy to be wrong though. They definitely seem convenient.

Bitwarden for several years.

Dashlane. I need a service where I can share/manage things for my elderly parents, and Dashlane is easier for that after LastPass became a dumpster fire

Keepass 2 on Windows Keepass2Android on phone & tablet with the file on DropBox

Bitwarden after lastpass started charging for the same service

I use pass but recommend Bitwarden when people ask for a recommendation.
When using pass, if you have a lot of devices and forget to sync at times you better know at least basic git lol.

Well, ahem, I use index-cards in a box. Never looses batteries - totally hack-proof !

I used to use 1Password standalone, but they moved away from it and started only selling password management as a service and I really didn't want that, so I'm running Bitwarden now on a private VaultWarden instance for myself and my wife. It's been great and is a good option if you want to run your own platform and not use Dropbox or other third party cloud storage or platforms for the data. Obviously, you're then responsible for backing the data up, etc., but I like the flexibility and data ownership of it.

Using Keeper at the moment. I used to use 1password, then moved to Bitwarden. Using keeper now because my employer has licensing to give each employee a personal account and a business account for free. So, basically I'm just taking advantage of that.

Bitwarden here too

I have been on Bitwarden for about 8 years now. Paid for it about 7 years ago. I LOVE it. I also use KeePassXC On my Linux box and for work - That's a great platform for anything that requires even more security (Work, Security focused websites, etc)

I've been using Bitwarden, but the second proton releases proton pass to the public I'll try to switch

1Password. Wasn't thrilled with their move to electron, but it hasn't been as bad as I feared, and they've earned my trust at this point

Doesn't hurt that my work now uses it, so I get the family plan for free either

Has anyone tried Proton Pass?

KeepassXC and Keepass2Android

self hosted passbolt is very convenient, didn't see more secure alternatives. The only bad thing is that it cannot save TOTPs currently

Self hosted Bitwarden is the bees knees.

I've been using keepass on PC and KeepassDX on Android.

I'm very surprised at how web centric some of these answers are. I have so many passwords that have nothing to do with a web site.

"Google Chrome" is not gonna type in the bitlocker password on a dual boot system everytime there's a kernel update :p.

Get yourself a mooltipass :D

Vaultwarden for work, KeePass and KeePassDroid for private use.

Keepass on OneDrive, so I can access it from my computer and phone.

Keepass2 and keepass2android combined with input stick to type my passwords wherever I need them. It's a wonderful combination. I host my password file on Google drive and other places but I keep a key file on the local device. It's not perfect and wouldn't never stop a threat from a state actor but I don't think I've got time for that kind of security anyway.

http://inputstick.com/buy/

Incidentally the input stick can function as an on the fly rubber ducky if you really want it to. It does some really really cool stuff.

Switches from KeePassXC to Nextcloud Passwords recently and I absolutely love it. Sync and Browser Plugin are much more reliable.

I’m currently hosting Vaultwarden, an implementation of Bitwarden. It’s working perfectly so far.

pass
I like the fact that it is a minimal and simple program that does one thing, and does it well. If you already use GnuPG for encryption, you will get used to it quickly.
The only downside for me is that it doesn't encrypt password names, only the content.
It also has many plugins and android/ios apps.

Bitwarden. I used to use LastPass but got terrified of their security.

I simply use Google/Chrome

Bitwarden enjoyer here

I use a self hosted vaultwarden instance! Should probably migrate it to my new server soon-ish though...

Strongbox (basically Keepass for Mac).

I've started using Bitwarden after two of my coworkers quit to go work at Bitwarden. Really nice interface, and very easy to use

My approach is a bit more complicated than of many commenters here: I use both Keepass and Bitwarden.

Bitawarden is for most of the passwords, and I use it to share some passwords with family.

Keepass is for the most sensitive stuff - online banking and emails. Also, I use it for non-web apps. Keepass DB is synced with Syncthing between desktop and mobile.

TOTP is handled by Aegis android app. I was thinking to move it to Keepass, but I really like interface of a dedicated app. And it's data automatically backed up to Nextcloud

gopass and unfortunately also Firefox sync + chrome passwords on mobile

Old school.

Pen, paper and locked fireproof case.

bitwarden, keypass.

I use keepassx and cloud storage to move it between computers like a caveman.

• Bitwarden for my Passwords.
• Keepass for my password for Bitwarden.
• An master password + picture(key) combination for access to my keepass.

Personally, bitwarden because of the browser addon, and then KeepassXC to store the 2FA recovery codes

1Password, it's cross-compatible across all my devices, and for all sites that support it, a YubiKey hardware 2FA key.

But if you're not a fan of trusting a 3rd party company, then KeePass is probably still your safest bet.

Regular Bitwarden because I'm too chickenshit to self-host my password manager (like, if my NAS goes down or is unreachable, I'm screwed).

I was a longtime Keepass user before that, and may go back to it because I love the idea of a password + key file.

I use KeePassXC in my linux desktop, KeePassDX in my android smartphone and syncthing-fork/syncthing to sync modifications between all devices. The encrypted database (long passphrase generated with Diceware method) never goes online. I also use yubikeys and multi factor auth for all important accounts

Been using Keeper. I would run a self-hosted Bitwarden instance but I travel a ton and don't trust AWS / GCP with my data (would put it on a Raspberry Pi I have lying around). If I didn't travel, I would 100% have self-hosted it for the added security and peace of mind.

So far, I've had a great experience with Keeper. It hasn't had a breach in a hot minute, and it auto fills on all my devices perfectly regardless of OS. Very happy so far, but will probably move as soon as I stop travelling quite as much.