Bitwarden vs KeepassXC - Which Is The Best Password Manager?
Рет қаралды 14,477
Күн бұрынToday I compare keepassxc and Bitwarden. Which is the best password manager for you?
👇 PULL IT DOWN FOR THE GOOD STUFF 👇
Patreon - / thelinuxcast
Liberapay - liberapay.com/thelinuxcast/
KZbin - / @thelinuxcast
===== Follow us 🐧🐧 ======
Discord - / discord
Odysee - odysee.com/$/invite/@thelinux...
TILvids - tilvids.com/c/thelinuxcast_ch...
Mastodon- fosstodon.org/@thelinuxcast
gitlab.com/thelinuxcast
Subscribe at thelinuxcast.org
Contact us email@thelinuxcast.org
Telegram Group - t.me/+9lYoIuLh0JIyMzcx
Amazon Wishlist - www.amazon.com/hz/wishlist/ls...
Merch Store - zaney.creator-spring.com/
Logo Courtesy of - pedropaulo.net
==== Special Thanks to Our Patrons! ====
thelinuxcast.org/patrons/
==== Referenced ====
keepassxc.org/
bitwarden.com/
==== Timestamps ====
0:00 Intro
2:02 The Biggest Difference
3:31 KeepassXC
4:35 KeepassXC Availability
5:12 Keepass Sync?
6:03 Initial Setup
6:58 Item Creation And Organization
7:50 Import and Export
8:26 Group Support
8:57 Password Creation Walkthrough
10:33 External Password Generator
10:45 Keepass Browser Integration
11:52 Other Settings
13:37 Security
14:37 SSH Integration
14:57 Multiple Databases
15:42 Autotype
16:12 KeepassXC Downsides
17:56 Wrapping Up KeepassXC
18:49 Bitwarden
18:53 Bitwarden Availability
19:27 Sync
21:22 Bitwarden Initial Setup
22:47 Bitwarden Look and Feel
23:10 Import and Export
23:26 Item Creation
24:19 2FA Support
25:24 Folders (groups)
25:44 Biometrics
26:18 Browser Integration
26:58 App Settings
28:40 Web Interface
29:29 Account Settings
29:56 Premium Features
30:54 Vaultwarden
31:35 Which is Better?
33:25 Conclusion
#vs #passwordmanager #thelinuxcast
@TheLinuxCast Жыл бұрын
Want more Linux content? Follow me on Mastodon: fosstodon.org/@thelinuxcast
@euphanasia210 Жыл бұрын
You could run your own Bitwarden server, so that you don’t have to keep your passwords outside of your network.
@damadorpl Жыл бұрын
Exactly. Keeping it on local proxmox over cloudflare tunnel. For double security
@marcusaurelius3487 6 ай бұрын
But that wouldnt sync with your phones right
@dex4sure361 6 күн бұрын
@@marcusaurelius3487 yes it will but its not for noobs. you could host bitwarden server on a raspberry pi thats always on for instance.
@gingered Жыл бұрын
Kee-pass-ex-see vs keep-ass-secs-ee pronunciation debate should replace the guh-nome debate. Much more fun 😊
@TheLinuxCast Жыл бұрын
😂
@user-ic6ln4lm2x Жыл бұрын
keep-ass-secs-ee wins every time
@diotitus Ай бұрын
Yes lmfao
@VictoriaMan69 Жыл бұрын
I would personally recommend hardening your password manager with a physical security key.
@Darkk6969 Жыл бұрын
KeepassXC supports YubiKey.
@neuideas Жыл бұрын
I use them both. Bitwarden mostly for the browser extension, and KeepassXC for its flexibility. One effectively acts as a backup to the other.
@donpeer4477 Жыл бұрын
Do you import/export back and forth between them or manually copy/paste in order to update?
@neuideas Жыл бұрын
@@donpeer4477 I copy/paste at the time of entry. It's usually just a few more seconds.
@Super-360 Жыл бұрын
keepass xc has a browser extension that work's quite well and if even if it doesn't detect login fields the autofill in keepassxc works just as well too.
@xmaverickhunterkx Жыл бұрын
KeePassXC has a browser extension, though? Pretty good too.
@neuideas Жыл бұрын
@@xmaverickhunterkx Yes, KeepassXC has a browser extension. It's garbage, IMO, compared to Bitwarden.
@sal3awy362 Жыл бұрын
I use Bitwarden for 2 years now, never had a complaint.
@JureRepinc Жыл бұрын
What I hate the most about Bitwarden is that the desktop app is a stinking bloated Electron web app and not a proper native (Qt) app like with KeepassXC. That was the deciding factor for me choosing KeepassXC.
@sagichdirdochnicht4653 Жыл бұрын
That may be the case, but on the other hand, we have Browser extensions. I haven't even bothered to install the App in over a year or something, because there is no need for me. In 99% of my usecases, I need passwords in my Browser anyway.
@flogginga_dead_horse4022 Жыл бұрын
Never wrote down passwords in 30 plus years. Also wrote a password manager in 2005 though. Been using Bitwarden for years now...
@wyfyj Жыл бұрын
When you make a NAS/home server, I think you should make a docker containing this. That's what I'm thinking of doing.
@toranshaw4029 Жыл бұрын
I'll probably do something like this too, eventually, when I have the money and room to set up a home server!
@ghosthunter0950 Жыл бұрын
How reliable would it be to just use an old laptop for this and some data storage?
@lilith1504 Жыл бұрын
I would use Podman. But basically it's the same on the low level
@simpan197 Жыл бұрын
I do that with bitwarden (vaultwarden) buuut there are disadvantages unless you have a static ip
@wiped4489 10 ай бұрын
A hacker's not getting my handwritten paper! lol
@leecolten5641 Жыл бұрын
Good overview. However, not enough credit given to ability to sync database with mobile devices (e.g. keepass2android and keepasium for iphone - I've used the former quite a bit and it syncs seamlessly and easy to set up). Also no discussion of hardware security keys or key file for added security with keepassxc.
@joelchrono Жыл бұрын
Another thing. Keepass does have 2 factor authentication. But it does not have TOTP based authentication. You have physical keys and you also have a key file. Secure enough I would say.
@Rensuke_Hero-gami Жыл бұрын
Lately, I've been looking for a local password manager to help me manage my accounts and passwords w/o remembering the passwords. I then install pass, The Standard Unix Password Manager which I found from DistroTube's video. And then I watched this video about KeepassXC. If you have tried pass before, which one is better in your opinion between pass and KeepassXC??
@blackbeard3449 Жыл бұрын
The clipboard integration in keepassxc works perfectly in my Plasma NixOS machine. It might be xfce problem but I don't really know much.
@jr_Linux Жыл бұрын
i also will say it says you can import your bitwarden passwords and stuff but either cause it was first time using it or what not but it seemed like when i tried to import them it put them in the wrong text field so i had to literally type every password out lol so thats one thing i don't really like about the keepass i would eventually like to get stuff off the internet though like paswords its just gonna take me some getting used to or learning.
@wildmanofborneo 2 ай бұрын
Hello Bitwarden won't recognize a login page that only asks for the username (once the username is entered, the NEXT page asks for the password). How to get Bitwarden to recognize this situation? It works ok if the page asks for both the username and password.
@joelchrono Жыл бұрын
KeepassXC does recognize the system theme, but just like any other QT5 application you need to setup qt5ct and the like. I thought you were already using Syncthing? but that's the best tool not just for this but everything regarding file synchronization...
@scuzlol Жыл бұрын
Typically, the SSH Agent allows you to store ssh keys in the password manager itself, and you point your .ssh/config file at the socket of the password manager. It forces you to authenticate in order to use your keys.
@readmeat4vegans829 10 ай бұрын
Thank you. I was intrigued when he mentioned this feature because I thought that was what is was for. A layer of encryption for your ssh keys (assuming that is what you are saying) would increase my security - especially since that is what I use instead of passwords to connect to remote intranet machines.
@user-ic6ln4lm2x Жыл бұрын
Keepassxc has 2FA in the form of key files or hardware keys. I use a key file in an obscure directory deep in the file system
@jr_Linux Жыл бұрын
i've used bitwarden i also have tried keepass but with forgetting things and if i changed my passwords or something i'd be afraid i'd forget something. like right now its been awhile since i used keepass and i'd have to go in and probably re write my passwords and stuff in a new file just cause i've changed or added some stuff since the last time i used it. but now that im back on linux and got a laptop i can keep up with it easier but if you just have mobile its kinda a pain.
@Tzalim Жыл бұрын
Bitwarden all the way... But Keepass is probably safer if you prefer offline password management.
@playtester6635 Жыл бұрын
I think its all about your threat model. I like bitwarden, lots of great featiures, transparent audits, open source. but may not be the be the best for someone of higher risk of attack. Good enough for most of us though.
@joelchrono Жыл бұрын
@@playtester6635 good enough for most. Except its likely that nobody is targetting you. There is a chance someone is targetting Bitwarden in general though, so its still a security risk. At least Bitwarden encrypts everything though, so there's that :P
@playtester6635 Жыл бұрын
@@joelchrono All they have is the hash on the bitwarden side.
@umka7536 Жыл бұрын
You can host your own BitWarden server.
@Tzalim Жыл бұрын
@@umka7536 true, but it's not completely offline though like KeePass is.
@Neustocks 10 ай бұрын
I use both. One essentially acts as a backup for the other.
@raphaeldrouin2934 Жыл бұрын
On my pc I use keepassXC and on android I use keepassDX I can use fingerprint to unlock my database with it
@glenbarrington2634 Күн бұрын
The BitWarden Android version is VERY unstable on my Lenovo M10 tablet, and very reliable on my Pixel 6a phone But overall, I like BitWarden, The convenience and value of its ability to sync across all platforms can not be over stated. I also REALLY like it's ability to search for compromised passwords. I've just switched to Linux and have tried a LOT of distros (settling on Ubuntu, I think) but I'e noticed that the UNIQUE login password I used for Zorin was compromised within the week. Is this a common Linux issue?
@yttt2220 Жыл бұрын
Like that bitwarden added Argon2id recently as a KDF function but for me KeepassXC still wins due to being able to use a Key file which just adds so much more entropy.
@ashutoshdongare5370 Ай бұрын
Had tried both and more. The convenience and security of bitwarden is unmatched...
@debasishraychawdhuri Жыл бұрын
The fact that you control how the database in synchronized is not a security upgrade unless you are a security professional. Otherwise, I would say you stick to a service where they spent a lot of time thinking about it and they have experts.
@damolin77 Жыл бұрын
How come these companies don't use MFA: Multi-Factor Authentication.
@thingsiplay Жыл бұрын
KeePassXC have multi authentication possibilities. It can be setup to require a key file or even hardware key (or both), in addition to the password.
@privacybro 7 ай бұрын
Bitwarden ❤
@keltyll Жыл бұрын
Vault Warden video please.
@craigmauz Жыл бұрын
Sync a keepass password file with cryptomator in cloud
@desuburinga Жыл бұрын
I prefer KeepassXC for personal stuff. I do use bitwarden for work stuff and it is convenient. Interesting point about the clipboard history. For Ubuntu it doesn't come with a clipboard manager and it does clear history after 10 sec (can't paste pw anymore) which I find much more convenient (and safer) than having to override it manually when using Bitwarden on the work laptop.
@jacmy Жыл бұрын
Don't mean to evangelize BitWarden but in the options there's clipboard clear timer
@leptanian Жыл бұрын
@@jacmy ooh thanks just enabled it. Never crossed my mind to check haha much appreciated
@skelebro9999 Жыл бұрын
Pen and Paper solos.
@skelebro9999 Жыл бұрын
@Kro oxygen/brain solos your water/fire.
@eriksiers Жыл бұрын
I'm currently working on my own password manager. It's going to use local storage only, with the option to backup somehow (haven't gotten that far yet). I'm hoping to have it released in the next month or two.
@chuckmuckamuck8001 Жыл бұрын
On GitHub?
@eriksiers Жыл бұрын
@@chuckmuckamuck8001 Not currently published. I doubt I'll open source it. My method of "encryption" relies rather heavily on "security through obscurity" (I know, I'm awful) and releasing the sources would negate that. (I'm writing it for myself, as is the case with the majority of my software.) It's rare that I don't open source something I have publicly released, but in this case I feel it's the right choice. 🤷♂️
@joelchrono Жыл бұрын
In my opinion you should make a keepassxc client. Trying to come up with your own encryption and organization will only make it harder to switch in case you get compromised or something.
@eriksiers Жыл бұрын
@@joelchrono On the one hand, I'm not terribly worried about super high security. There's no server to compromise, and if someone else has access to your device(s), you really have bigger worries. On the other hand, I think it would take a "hacker" some time to get something useful out of "kSM~/j+(oJ,$l+" or "-k/E,R,WOFm3mKN$.F", two phrases "encrypted" using a simplified version of my method. (Or maybe I'm just kidding myself, who knows.)
@eriksiers Жыл бұрын
@@helloimatapir under other circumstances I would agree with you, but I have my reasons.
@alexdaguy9626 Жыл бұрын
keepassxc uses qt, you could use gtk plugin for qt so that it can use native theme
@TheLinuxCast Жыл бұрын
If you just qt, then it doesn't follow set QT things either. Because I have one of those set for my system and it didn't follow it.
@blentar Жыл бұрын
@@TheLinuxCast you have to click on View > Theme > Follow System Theme (or smth like that) for it to follow your qt theme
@koljasha_nafman Жыл бұрын
The best password manager - only "Orthodox" pass 👍
@user-ic6ln4lm2x Жыл бұрын
I recently got a 2FA code sent to my phone ,which indicated someone had my bank account user number and was attempting to change my password using the "forgot password" option. Of course , using 2FA prevented any further progress for the criminal. I notified the bank and their fraud department got as far as locating to origin of the attempt as being in the region I reside. I have never given my bank account user number to anyone and I was intrigued as to how the criminal got it. Was it just a random number attempt? Was it an "inside job" by a bank employee? Or the only other thing I could think of was that years ago I used LastPass but closed my LP account after their first data breech. I was wondering if my data still exists on LastPass servers even though I closed my account. I used Bit Warden briefly and then went to Keepassxc. I synchronise the KP database on my devices using Syncthing
@DlxyRekt Жыл бұрын
Bitwarden forsure
@jayplay8140 Жыл бұрын
security through obscurity, statistically you'd be safer keeping your passwords in a plain text file on your desktop than on a major target like bitwarden
@bassmaiasa1312 Жыл бұрын
But if someone got to your text file, would you detect that breach? Bitwarden is a major target but I'm confident they would detect a breach. Even Lastpass detected the breach and dragged their tail on notification, but we were notified.
@developerjavalinux Жыл бұрын
🔐🛡👍
TheSoul Music Jam
Рет қаралды 9 МЛН
Pete Matheson
Рет қаралды 10 М.
Jason Rebholz - TeachMeCyber
Рет қаралды 43 М.
securityguideme
Рет қаралды 61 М.
securityguideme
Рет қаралды 16 М.