I recently switched from #bitwarden to #1password as I heard good things and the upcoming passwordless integration to IOS.

I will say the experience is horribly and I am probably going back.

* Importing from BW was CSV only and error prone.
* All webpages/plugins are super slow to load. The Firefox pluging takes regularly 5 seconds to show the password prompt
* No biometric login on the firefox plugin
* OTP integration doesn't automatically copy to the clipboard.

So I learned the hard way to maybe not randomly generate passwords I don't have memorized at all via services like @bitwarden when I need said password to utilize an app to clock into work, because when there's an issue with the password service missing your encryption key that "impacts a small number of users" and turns out I'm one of the lucky few, it definitely makes things difficult.

Still love #Bitwarden and since I began using it in 2017, have never had to check out github bug reports or community boards or the subreddit to see if others are experiencing similar issues (though to be fair, I haven't found anyone talking about the same error I am getting on any of those sites, and I googled a LOT while troubleshooting).

@m1e However, it adds friction and is one more thing to manage. You can use the #bitwarden client and switch between a bitwarden cloud account and a self-hosted account, but it is not as seemless as participating in multiple organizations with the same account.

@m1e my question applies equally to self-hosted #bitwarden. Is it overkill to self host instead of use BitWarden in the cloud? The motivation is not to save money. The concern by IT is that Bitwarden in the cloud is a juicy target. After the security issues with LastPass, I can see their point.

@FroTheBeard I believe #vaultwarden is the self-hosted version of #bitwarden.

How do people feel about #BitWarden vs. #VaultWarden? Is it overkill to want to host your company passwords in house to avoid BitWarden being too juicy a target? Having a discussion with IT.

@benjaminhollon #BitWarden is probably the easiest to manage and support as well. The free plan is all they would need and has great interaction and works the same across devices, browsers, etc. even if they aren’t technical BitWarden is simple

Bitwarden’s been throwing warnings on my phone telling me to scale back my hashing parameters because they might fail on this device.
Of course, now that I post about it, it’s not doing it so I can’t screenshot it…
#Bitwarden #PasswordHashing #Infosec

@utopify_org I use #bitwarden and oh yes, impossible! 🫣😅

I appears that if you have registered a #Yubikey as a FIDO2 key in #Bitwarden, it allows this but for reasons unknown it doesn't work. Fortunately I discovered I also setup another 2FA login method which allowed me to log in. I have now removed this key from my account and configured 2 others in its place.

If you configured a Yubikey against your Bitwarden account, go check now that it works, and if it doesn't take the time to redo your 2FA configuration. Do it now!

Currently unable to log in to #BitWarden from a web browser or new device, although my already logged in devices continue to have access. To say this is extremely concerning would be an understatement. Is anybody else currently able to log in to BitWarden, including 2 factor auth, on a device which isn't already logged in?

I notified #LastPass in early May that they have a security error on their homepage. It's still there. They don't care. They also wouldn't have the problem if they didn't have so many trackers on their homepage.

#1Password and #BitWarden are better options for password managers, among others.

Petition to make Ctrl+Shift+L also check the box of "I'm not a robot" when auto-pasting credentials from #BitWarden

@MuseumShuffle @ryanashcraft Same. I prefer #Bitwarden now. Import was reasonably straightforward, but can’t import every field in 1P so some things may need to be manually transferred after the initial import depending on how you were using 1P

@vees #vaultwarden #bitwarden ftw 🙌🏼

@TimWardCam
Well sure, if you're not using #MFA, but for your sake, I really hope that's not the case.

I'll tell you right now that I use @bitwarden to manage my passwords, but even if you somehow guessed the email address and password I use to unlock my #Bitwarden vault, you still wouldn't be able to access my stuff, because you'd also need to steal my physical #Yubikey or my literal #fingerprint. If an attacker can gain physical access to my home and/or #biometrics, I have much bigger problems to worry about than my online accounts.

@bitals @Nifflas

One thing that will be difficult for me to give up is the #Bitwarden desktopapp.

If you use your #passwordmanager for other services, like SSH connections and terminal applications, it is quite frustrating to always have a browser window open. This is where I just love the dedicated application that always sits on my dock.

Just like #ProtonDrive, #ProtonPass needs a dedicated app for #Windows, #Linux and #Mac for it to even be considered a competitor in the space.

@bitwarden

#Tofu and #yubikey for #2FA, #BitWarden for password management.

A quick guide on setting backups for self hosted Bitwarden servers https://medium.com/@gallaghersam95/self-hosted-bitwarden-backups-f6301720b82c #selfhost #bitwarden #backups

So un, people using #bitwarden from work, I'm having an odd issue and now one of my coworkers is, too. When first logging in, it's like bw doesn't know we're on a company account. We can't even see the company account. Instead we have to select switch products, go to organization, click log in, log in again, then close all those extraneous windows. Please tell me there's a way to fix this? Desktop app is fine but you can't do admin things from there.