this post was submitted on 15 May 2026
1012 points (99.5% liked)

Technology

84700 readers
4030 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
1012
Bitwarden New CEO has extensive M&A, Private equity experience, Removes Transparency from its Motto (www.fastcompany.com)
submitted 1 day ago by iter_facio@lemmy.today to c/technology@lemmy.world
232 comments fedilink hide all child comments
 

I find this move concerning, and wish that the Founder had looked for a new CEO that shared his values rather than a Private Equity and Mergers Expert.

Furthermore, the change to the GRIT motto is worrying. Trust is useless without Transparency when it comes to code and security.

you are viewing a single comment's thread
view the rest of the comments
[–] YurkshireLad@lemmy.ca 58 points 1 day ago (6 children)

Same question here. What are the best alternatives?

[–] zikzak025@lemmy.world 89 points 1 day ago (5 children)

KeePassXC is the best FOSS option, but you'll need to figure out self hosting if you want to sync the database between devices.

[–] M1k3y@discuss.tchncs.de 36 points 1 day ago (2 children)

As the database is encrypted in your device, you dont really need to self host. A keepass database in the Google cloud is not really problematic, although you should still choose a more private cloud provider.

[–] eager_eagle@lemmy.world 5 points 1 day ago (1 children)

make sure to use post-quantum encryption algs

[–] victorz@lemmy.world 3 points 1 day ago* (last edited 1 day ago)

Which algs would that be? ed25519 okay? Is that even an encryption alg? I'm not too hot with encryption.

[–] Quetzalcutlass@lemmy.world 6 points 1 day ago

And you can use a keyfile separate from the database for even more security. If the database is backed up on Google Drive and the keyfile is saved on a USB or in a (non-Google) email somewhere for the rare times you add a new device, your passwords should be safe even from keyloggers or Google themselves.

[–] Wildmimic@anarchist.nexus 6 points 1 day ago (1 children)

or use syncthing, no hosting experience required

[–] stephen01king@lemmy.zip 2 points 1 day ago (1 children)

Syncthing on the phone seems to use up a lot of battery, though.

[–] michaelalf@lemmy.world 2 points 8 hours ago

If you don't need real time sync you can disable background use of the app. That's what I've done, and I just open the app when I need to update. Probably a smarter way to do it, but it works for me.

[–] Cethin@lemmy.zip 1 points 1 day ago

It doesn't need to be complicated. I use syncthing to synch them. It's pretty trivial. You just tell it what folders to synch, between which devices, and it'll synch whenever it's running.

[–] Programman4233@lemmy.dbzer0.com 1 points 1 day ago

post-quantum encryption algs

I use the built in ftp sync option with any file explorer that makes an ftp server on my phone.

[–] tremble5218@programming.dev 1 points 1 day ago* (last edited 1 day ago)

I found the easiest way to sync is to use rclone. This way you can use any cloud provider like Google Drive or OneDrive or DropBox. First create the rclone remote for your cloud provider using rclone config. Second step is to create a second remote using the encryption option (menu item 16), choosing an appropriate path <first remote>:<path to directory>. Upload your KeepassXC database to this encrypted remote using rclone copy.

On Android you can use the RoundSync app from F-droid to configure the the same remotes, then create a task to copy or sync from that encrypted remote and a trigger to run that task on a schedule. Overall, this one-time setup works really well for me. This is my backup in addition to using Bitwarden for several years. Bitwarden is not going to get my money any more.

[–] IcedRaktajino@startrek.website 34 points 1 day ago* (last edited 1 day ago) (2 children)

I use Vaultwarden

[–] refract@lemmy.zip 22 points 1 day ago* (last edited 1 day ago) (1 children)

But you still use the official BW client apps, correct?

Unless you forego usage of the clients and access Vaultwarden through the browser (removing accessibility and convenience especially on mobile), it is not an e2e replacement solution.

Are there any alternative FOSS clients/apps that work with Vaultwarden?

Edit: I see further down that the official client is open source, and would get forked in the event of any fuckery. So I'm sticking with Vaultwarden + Official client app approach for now.

[–] IcedRaktajino@startrek.website 4 points 1 day ago (1 children)

I just use the webapp UI and don't bother with the clients/extensions. Easy enough to just log in, copy/paste from there.

But yeah, the official client (and probably browser extension as well) would probably be forked if/when needed.

[–] napkin2020@sh.itjust.works 3 points 1 day ago

What about passkeys?

[–] h54@programming.dev 20 points 1 day ago (1 children)

Proton Pass.

[–] Joelk111@lemmy.world 16 points 1 day ago (1 children)

I'm pretty sure that isn't self hostable.

[–] h54@programming.dev 2 points 1 day ago

That's true.

[–] jtrek@startrek.website 15 points 1 day ago

I use keepassxc. It does the job.

[–] Resonosity@lemmy.dbzer0.com 3 points 1 day ago

KeePassXC + Syncthing to sync passwords across devices

[–] xnx@piefed.social 4 points 1 day ago

Alias vault seems the most feature complete and self hostable https://www.aliasvault.net/