Yeah I use Lastpass, it's very useful. I'd like to switch to something FOSS and locally encrypted, but honestly I've tried a couple times and never got it working properly, meanwhile Lastpass always works. I hate their blinding white UI lol.

Does anyone have recommendation for a password manager that works well on both mobile and desktop? I browse with Firefox and while Lockwise is integrated into Firefox now and works fine on desktop, it's kind of 'eh on mobile in my opinion. It "works" but I find it to be fairly clunky and a lot of the time I need to open the Firefox app and just find the password in there and paste it in.

Does any other application work better for transferring passwords made on desktop to mobile more seamlessly? Looking for better detection of the user/pass via app or website.

Ive used 1password since almost the beginning. Cant say I have any complaints at all!

Keepass with key file. I synchronise only the database with cloud servers while the key file stays on my devices and never gets synched. I think that's a good tradeoff for security and convenience.

Having a password manager is incredibly useful when someone dies and you need access to their accounts. I think bitwarden and probably others lets you grant emergency access to someone, definitely leaving it in my will.

I personally use pass, which uses gpg for encryption and can also use git repositories (I use it with my personal gitea instance).

I toss my KeePass file (encrypted database) in Google Drive.

That way I have all the convenience of syncing through the cloud, but I also get the benefit of having my database access and database storage be managed by separate companies.

If Google has a breach and my data gets leaked, sucks, but the database is encrypted so I’m good. If KeePass encryption is broken, sucks, but attackers would also have to find a way to gain access to my Google Drive.

I would love to use one, but to be honest, I have not found one that I trust, so far.

The perfect "password manager" would require 2FA, has some kind of "online backup" (cloud) that I can host myself and has to be open source. So far nothing really seems to offer all this.

I finally committed myself to getting BitWarden set up, maybe a year ago. I wish I had done it sooner. I use it to generate all my passwords, and I have it installed on my phone and desktop. I love remembering only one password and knowing all my other passwords are secure. For me it's a no-brainer.

Using a password manager to keep your passwords safe is a good practice. I’m still a bit hesitant to use the cloud based options. Even though all is encrypted. I use KeePass and OneSafe. Currently looking into the new password manager from Proton to investigate whether that is a good and practical one to use.

I'm probably going to get grilled for this but I've Been using Firefox's Saved passwords, I really don't need anything better.

I absolutely use a password generator/manager. Using Bitwarden.

Keepass with syncthing is GOAT

I use pass which is a frontend for GnuPG. It's sort of primitive and I had to write user interface for it but it's super flexible. Since every password is saved in encrypted file syncing is easy and we use Git to share company passwords amongst ourselves.

It's kinda ridiculous that no one made better system for credentials, soma of requirements policies are ridiculous.

I would never use cloud services if not hosted on my server.

Keepass with custom sync is best option.

There are a lot of people recommending a very specific program in this thread. Be skeptical, everyone. Do your research on the strengths and weaknesses of these types of tools, and the specific offerings of all current leading services.

I use 1password. I heard that Apple uses 1password internally. I figure their IT guys are more expert than me, a random internet dude. So I chose 1password. Works great on desktop, mobile, and even Linux. Family plan is a good deal. You can even share passwords between users for common things like bank accounts, etc, between family members.

KeePass

Started with Bitwarden years ago, then I used 1password for a few months and now I'm using Keepassxc (Keepass2Android on my phone).

And I recommend everyone to use one. Not necessarily Keepass if they are not very tech savy (database synchronization can be a little bit tricky but not hard). Bitwarden was good too but Keepassxc supports adding ssh keys which is a big plus for me.

I use gpg to encrypt my passwords with my public key. Benefit is that adding credentials to a new file doesn't require me to type the master password (password for private key). I trust gpg the most for security.

Yes. 1Password. If and when they fuck up, I'm going self-hosted.

I really like bitwarden personally. Its open source and works pretty well for my needs