Sysadmin

8524 readers

2 users here now

A community dedicated to the profession of IT Systems Administration

No generic Lemmy issue posts please! Posts about Lemmy belong in one of these communities:
[email protected]
[email protected]
[email protected]
[email protected]

founded 2 years ago

MODERATORS

[email protected]

Sysadmins, how do you store and manage passwords? (feddit.org)

submitted 1 week ago* (last edited 1 week ago) by [email protected] to c/[email protected]

58 comments fedilink hide all child comments

From a simple KeePass database to enterprise credential management solutions—what’s your setup at work?

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 3 points 1 week ago (8 children)

I don't understand the extreme love for Bitwarden. I understand it's useful, but I want as few things with a webui and server instance as possible, especially passwords, the thing that should be most secure.

KeePass, vault saved into the user's One Drive synced folder is sufficient. It's secure, offline, and automatically makes backups. And migrates to the new system just by logging into One Drive.

Bitwarden and others worry me because they have a lot of exposed attack surface, comparatively, and require much more maintenance to keep secure imo. I don't want to expose any of that to a portal or anything.

That said, I don't hate Bitwarden, the bitwarden/vault warden software is incredibly solid for what it is.

[–] [email protected] 15 points 1 week ago (1 children)

OneDrive

offline

...shoukd we tell them?

[–] [email protected] 4 points 1 week ago

You can access it offline.

I do not mean to imply the One Drive is offline. It's the syncing backend.

But if your internet is out, you can still open your vault and look up a router password, for example, because the vault is a file on your local machine.

load more comments (6 replies)