Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I've been looking to migrate off LastPass to Bitwarden or KeePassXC, but can't decide:

1. First off, who's to say LastPass will actually delete my data when I delete my account? Could I in practice be increasing my exposure by starting to use something different?

2. Bitwarden: They look cool but "In September 2022, the company announced $100M series B financing". In my experience, usually, financing = bad.

3. KeePassXC: I'm afraid the UX will be worse. But hey it's in my operating system repos, so perhaps I should just give it a try?



I've been very happy with Bitwarden. If things go south because of getting funding there are some good forks of the server you can self-host (vaultwarden).


Another happy vaultwarden self-hoster here. It requires almost not maintenance from me once I got everything setup.


> Bitwarden: They look cool but "In September 2022, the company announced $100M series B financing". In my experience, usually, financing = bad.

You can self-host bitwarden using the opensource implementation of bitwarden server. It includes everything, even the pro features, and supports multiple accounts for the whole family for example: https://github.com/dani-garcia/vaultwarden


Just use keepassxc and be master of your keys. You have to move forward. Every 6 months I hear about a breach at lastpass. I assumed only clueless normies were left on it, but I guess their efforts to blockade data exports were effective.


Perhaps I'm a clueless normie :)

The KeePassXC browser extension doesn't have exactly stellar reviews. As for KeePassXC itself, I'm a little hesitant to use something that makes the UX so painful I have to copy the usernames and passwords.

That said, switching from LastPass to Bitwarden seems a little pointless: yes Bitwarden is a younger company and perhaps hasn't managed to mess up their product yet, but knowing life it's just a matter of time and then I'm at a worse place than where I've started.

> Every 6 months I hear about a breach at lastpass.

Have any led to leakage of users' passwords?


Ooh there's this thing called Auto-Type in KeePassXC. I am a clueless normie after all...

And it appears to be customizable how the Auto-Type types... meaning I don't have to copy-paste anything. Well gee...

Wrt Bitwarden, yes I know I can self-host a server, but, managing servers is a bit of a pain, especially for things which clearly need no server.


Why no 1Password on your list?


1Password has the same fundamental flaw that LastPass does - they insist on hosting your vault on their servers.

That is a bad idea and you shouldn't use a service with that requirement. Use something you can self host, or have the choice of DropBox/iCloud/etc for syncing.


I just looked at the two that seemed to be the most mentioned in my circles (that'd be HN, I'm afraid...)


+1 for 1Password and Bitwarden. One is good at UI, one is simply yet more affordable.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: