• towerful@programming.dev
    link
    fedilink
    English
    arrow-up
    2
    ·
    5 months ago

    Bitwarden, DNS and email are the 3 services I pay for.
    Passwords can’t be inaccessible, free DNS services never have an LE API, and email is extremely difficult to self host. The uptime and security I expect for these things means I’m happy paying someone else to take care of it.

    Bitwarden seem to be a great company and doing everything right (even though they are being annoyingly slow with passkeys on android, my only fault with their service).
    Their subscription is extremely reasonable, so even if I figured I could self host it, I’d rather pay bitwarden

    • sugar_in_your_tea@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      2
      arrow-down
      1
      ·
      edit-2
      5 months ago

      I honestly don’t like passkeys, at least how they currently work. It seems the intent is to replace MFA with just one factor. I prefer 2FA with TOTP separate from my password manager, which means an attacker would need to exploit both to access my accounts.

      That said, it’s a sticking point for many people, so I hope Bitwarden gets it soon. I just probably won’t use it.

      • randombullet@programming.dev
        link
        fedilink
        English
        arrow-up
        4
        ·
        5 months ago

        From my understanding, passkeys is supposed to be something you have (phone) and something you know (pin) or something you are (biometrics)

        I still use hardware keys like a yubikey (something I have) and my normal password via a password manager.