• sugar_in_your_tea@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    17
    ·
    6 months ago

    Cool I guess?

    Personally, I use Bitwarden with my wife. We pay $10/year, and we share a few things:

    • streaming services
    • online shopping services
    • some bank accounts

    Basically, if it’s something that doesn’t allow separate logins and both of us will need, we share them.

    Everything else is not shared. $10/year is completely fair to me, and I’m probably going to upgrade to the family plan at some point. I plan to self-host soon, so I’ll have to see what plan we need to do that.

    • towerful
      link
      fedilink
      English
      arrow-up
      2
      ·
      6 months ago

      Bitwarden, DNS and email are the 3 services I pay for.
      Passwords can’t be inaccessible, free DNS services never have an LE API, and email is extremely difficult to self host. The uptime and security I expect for these things means I’m happy paying someone else to take care of it.

      Bitwarden seem to be a great company and doing everything right (even though they are being annoyingly slow with passkeys on android, my only fault with their service).
      Their subscription is extremely reasonable, so even if I figured I could self host it, I’d rather pay bitwarden

      • sugar_in_your_tea@sh.itjust.works
        link
        fedilink
        English
        arrow-up
        2
        arrow-down
        1
        ·
        edit-2
        6 months ago

        I honestly don’t like passkeys, at least how they currently work. It seems the intent is to replace MFA with just one factor. I prefer 2FA with TOTP separate from my password manager, which means an attacker would need to exploit both to access my accounts.

        That said, it’s a sticking point for many people, so I hope Bitwarden gets it soon. I just probably won’t use it.

        • randombullet
          link
          fedilink
          English
          arrow-up
          4
          ·
          6 months ago

          From my understanding, passkeys is supposed to be something you have (phone) and something you know (pin) or something you are (biometrics)

          I still use hardware keys like a yubikey (something I have) and my normal password via a password manager.