I'm surprised you don't have millions of subscribers. A very clever and security oriented guy.

A 365 environment with Azure would be most welcome on how to get this set-up. You've already given a lot of unintentional tips n tricks that help hugely for most environments, so thank you

Been using passbolt for sometime now... really like it

Ooh! Ooh! I would upvote your lab DNS!

Great tutorial as always. Loving the content as always.

I'm pretty happy with Bitwarden, This might be the next thing i try though :) Thanks for this video !

loved it, cant wait to setup on my homelab, and yes, I am waiting for Homelabs DNS😎😎

Bitwarden (especially Vaultwarden) has a pretty impressive set of features embedded (thinking about 2FA for example) even being self hosted :) But Passbolt seems like a good alternative that I'll definitely have a look at!

Passbolt is an excellent password manager. I can only recommend it.

The CE Version without 2Fa is not acceptable and not dispensable...

The ansible extension is interesting😜

Thank you for all of your content.

Looking forward to the DNS video, need to fix that in our home-lab too! (7:10)

Thanks. Nice Vaultwarden is much more cool.

No Folders (Private and Shared), No Admin panel and No Activity log (audit changes) => NO GO for the community version (this is subjective)

The dev fearures sound very interesting

Are you planning to make video for using it with ansible?

Nice. I may investigate this but I do like bitwarden. I stopped using vaultwarden as primary and now just use it as a backup of my vault. If for some reason something happened to bitwarden, I can easily still have access to my passwords. Does passbolt support yubikeys? Yes, would like to see how you do DNS. I tried pihole, but I had some weirdness, so moved over to Adguard Home and everything works nicely. I have a docker container that syncs my Adguard's so I don't need to make changes to both servers when modifying DNS entries. I definitely would like to see what you use.

I stopped watching at „no safari support“. I‘m happy with bitwarden, but thank you anyways for introducing this alternative. I will not change my favorite browser because of the password manager.

Interesting!

If you already have a NextCloud you could use Password for Nextcloud, too. Then you have a one stop shop.

8:23 - A .env file via the “env_file” directive in your docker-compose.yml file is also a great alternative for this as well.

If its just for a home lab then unless you share your home and or home lab with a bunch of other devs then surely something simpler like Keepass would be a lot simpler and more secure without needing multiple additional layers of apps, reverse proxies, services and browser plugins that all need maintaining and patching just to look after your passwords . Sure, its good to test things like this in your home lab before a commercial deployment where devs don't share the same workspace/file shares and secure sharing of credentials is required (but are shared credentials a sensible way of managing security or should each dev have their own credentials for each system for more accurate auditing??) but from a usability case for typical home lab scenarios Keepass takes a lot less to set up and support than multiple containers, secure certificates, docker infrastructure etc

Make videos of whatever came in your mind we're here to view them all

Hey Christian. Awesome video as always. Have you ever ran into the issue where when you visit the URL, nothing shows on the screen but it does seem to redirect? I am running docker in an Ubuntu 22.04 container within LXD to see if this same process will work.

Great video. Thanks for posting it. I am new to the Docker world and checking if you have a sample passbolt docker-compose file that can run locally on a docker without much configuration.

I am happy with Bitwarden, but I will try Passbolt later

have some open source password manager to deal with multi-access? for the case of an credential which not accept multi-access. Can i use passbolt for that? create an script or an status verify for that credential for block multi-access?

I know it's an old video, but how you would compare passbolt to vaultwarden?

Please cover Psono too, I’ve tested both and liked Psono more from a user perspective

uuu I like this one...

I was going to try it, and maybe replace Bitwarden, but the free version doesn’t have 2FA… so, I won’t even try it.

Benefits to bitwarden?

As avid mac user my self I only can recommend replacing Safari with Orion. Orion supports many Chrome and FireFox Plugins and yet stays close to Safaris WebKit.

Will cloudflared zero trust tunnel work same as Traefik?

Yes, please show office 365 videos! :)

They have multi factor locked behind the paywall?? How does that make this even an option? I guess that rules out anyone who locks their passwords behind a fido key like me.

Does CE edition support's sharing TOTP tokens?

safari nowdays is a the same thing that was IE for widnows :) bad crap that need to be replaced :)

I couldn't see to figure out the domain?

DNS video!

Can I use my personal gmail as a mail server ? for the mail server setup

Biggest issue with passbolt is the inability to easily restore deleted items. There is now bin where you can go to restore the "accidentally" deleted items.

Finally get it to work, but found the apk doesn't support my phone 😓

I really like your videos and all the new tools you demonstrate. However, just a constructive criticism. Your pace are really too fast and the concept doesn't follow a step by step which makes difficult to understand for a non native English speaker and just an IT enthusiastic like myself. Anyway, thank you for all your efforts.

what vs code theme do you use?

Waiting for dns server configuration...

Can you do one for psono

personally i like and use KeepassXC with the database hosted on Keybase but this looks like something i would try

Using vaultwarden now? Any user are planning to make the jump?

I think it's kinda useless tool. There are already alternative for Mac, called "Passwords". Or use any of KeePass like apps. For sharing credentials in corp. you can always use Nextcloud or Windows Share. How about integration with desktop apps like putty? For example, auto login using: "ssh:{TITLE} -pw {PASSWORD}".

I don't like the idea of that software being able to send emails. That sounds to me like a major security gap!

A password manager, which ideally is also used in insecure environments (browser extension, smartphone, etc.), must be able to be secured as much as possible, since all my passwords, Internet access, credit card information, etc. are ultimately at stake. In my opinion, you should really stay away from a variant without MFA. I find the approach of offering a password manager as a free open source variant without MFA quite questionable! You can do without functions, but maximum security should be given in every variant. I prefer to stay with Vaultwarden, because I can even use a Yubikey as a second factor. Maybe a sponsored video, but even not a good recommendation - sorry bro!

Oof, no 2fa for the free version - for a password manager…

They support Edge, but not Safari. EDGE from MS.... welp that's it for that video for me xD

Lamp!

Written on PHP? really!? no way

Literally my only question; if I host this on my home machine, can I unlock it simply using a u2f key? That's all I want out of a pm right now, because I want to use my flipper zero to access unlock keys for other services.

Hm, i still prefer to use Bitwarder (vaultwarden) which is imho an industry standard today...

Well if you fuck up the config file. You should always run yamllint before using it.

No one uses safari these days. And if you do its good that no plugin exists to punish you for using a lame os and lame browser

Not sure why would teams would like to share passwords. Every user should have a separate authentication. It is bad in a corporate environment to let users share auth credentials. I mean really bad. In corp you may share some secrets like API key, but that could easily be stored in a repository with something like git secrets. Thanks, but for my personal use I will stay with GNU pass and git.

This sounds very terrifyingly unsafe, or maybe more safe than a black box product

Show us the cli