I am looking into password managers, as number of my accounts are increasing. Currently I am weighing two options:
- Host Vaultwarden on a VPS, or
- Use the free bitwarden service.
I want to know how they are in practical aspects.
While I am fine self-hosting many services, password managers seem to be one of the most critical services that should not admit downtime. I surely cannot keep it up, as I need to update it time to time.
On the other hand, using bitwarden might require some level of trust. How much should I trust the company to use the free service? How do I know if my passwords would be safe, not being exposed to the wide net?
I want to gauge pros and cons, are there aspects I missed? How are your opinions on this? If you are self-hosting vaultwarden, how do you manage the downtime? Thanks in advance!
You must log in or # to comment.
Just a PSA for anybody reading the thread, though it doesn’t really help with the question at hand… On the very slim chance that your workplace uses Bitwarden Enterprise it’s worth knowing that every licensed user gets a free family plan that can be tied to an existing personal account, provided it’s hosted in the same region.
We do use it but very few of our own users are even aware of the perk so I like to spread it around when I get the chance!
One little bonus for using Vaultwarden is that you get access to premium features for free. But still, I put availability much higher when it comes to password management, so I would go with paid Bitwarden. That is what I did before moving to Keepass.
The bitwarden vaults themselves are encrypted with your password. So I’m not sure what there is to not trust with bitwarden, as even if files were stolen, they are encrypted so they’re largely useless.
I pay for bitwarden premium because it supports the development of a good open source project.
Edit: fixed phrasing given suggestion below
It’s important to specify that the items are encrypted using a key derived from your password, so Bitwarden themselves don’t have access to your passwords even if they wanted to.
Since they handle redundancy and backups I think it’s fine staying with them (+ great product)
