Password Managers, Anti-Virus & VPN software

You are so kind.....

So improving my tech security ness on my end. I realized that over 60% of my online accounts were using the same/similar password. With some of my friend's Social accounts being hacked, and horror stories of SIM swap scams, I decided it is time to start using a password manager and really start using random password generators for each online account. While this won't solve everything, I can sleep more soundly that I have little chance of getting fucked.

Also enable all 2FA if possible, trying to avoid using text messaging as a method since it isn't secured. But for some accounts I don't have a choice. Been happy with the Google Auth program, easy to use and simple. This might be more annoying for me...but shit I'm not taking a chance of being hacked.

So I started to use BitWarden today...and I love it. I might pay the $10/per year for the extra security options. However, I'm curious on the self-hosting method. After reaching the instructions, it seems too much tech for me to handle. So I was curious if there's a simple step-by-step guide to get it running on Windows or Linux.

However, if it is recommended to upgrade to the Premium plan, then I'll do it.

 

I use BitWarden, switched when 1Password announce their godawful new version. It's everything you need in a password manager, even if you don't pay the premium, but $10 per year is a small price to pay.

 

The problem with self-hosting is that you have to have an internet-accessible host if you wanna reach it away from home. Setting all that up is more complicated than installing bitwarden itself. If you still want to investigate it, if you have your own computer that you're willing to expose to the internet, there are docker images of bitwarden that will likely be easier than rolling everything yourself.

But I think easier would be to sign up for an account at DigitalOcean and choose the Bitwarden droplet from the "droplet marketplace".

Easiest is paying $10/year for all the features.

 

For the right person, pass is nice.

 

"Pass"?

 

Yeah. The clickable link might not have been obvious, especially if you're viewing SBAF using its light theme: https://www.passwordstore.org/

 

That's actually really nice for someone who spends most of the day at the command line!


What is this "light theme" thing of which you speak, and why in the world would anyone want to do that?

 

I usually like dark themes, but I don't like the colors in the SBAF "Tin" style. BTW, the names are reversed from what they should be. The dark theme should be called "Cobalt" (which is the name of a blue color) and the light theme called "Tin".

 

Switching the subject a bit. What's a good basic VPN that is solid for my smartphone/tablet when using Public Wifi?

I don't need VPN for home use if I have to be honest, but I'm concerned when I'm at my local Wal-Mart using it's Wi-Fi for product research and Walmart Pay. I don't need something fancy, just something that is good enough with Public Wi-Fi.

 

I really like surfshark...

 

https://mullvad.net/en/

Flat pricing, great security and speeds, uses OpenVPN or Wireguard or their own app. This is the best VPN service I have been able to find, and I've searched and tried a lot.

 

ProtonVPN. Zero-knowledge. Swiss laws are very strong on privacy. There's a free tier.

 

I use ProtonMail, they are a legit and serious privacy minded company.

 

What’s the advantage of a password manager app over apple’s keychain if I use all Mac computers and phones? Is there any?

 

If I know your Apple user info, I can hack into all of your other accounts if you have their log ins saved with Apple.

I try to not rely on one service 100%.

 

Access to info in the keychain is a little hard to get at in iOS compared to other apps. Otherwise, essentially the same.

this is true of any password manager. If you have the username password, you can access the data

 

maybe @YMO is saying that it’s more likely for someone to get ahold of your Apple ID and password because it’s used everywhere as opposed to a password manager password which is only used for your passwords.

 

You both understood what I am saying. If someone get a hold of your Apple ID + you use the Apple ID as a password manager....then the hacker gets all of your log ins.

If a hacker gets your Master Password for your Password Manager, then you are also fucked. My Master Password for Bitwarden is not used for any logins for any Online/OS services.

 

I know at least 1Password uses separate encryption keys for each secret. The Apple keychain uses your login password to decrypt, I don't think it creates separate encryption keys for each item. Maybe it does though.

Operationally they work the same, except for sharing capability. I have a vault (keychain) in 1P that I share with my wife, containing banking, insurance, and medical secrets, in case something happens to me and she needs access.

There are other vaults that are private. She has her Facebook password in her private vault, and I have my SBAF password in my private vault, for instance.

 

Not really, unless you have an unusual use case that one of the password managers enables. Apple's keychain isn't any less secure, if that's what you're asking.

In fact, for anyone whose passwords are all entered in a web browser, the browser's built-in password manager is probably all that's needed. The major browsers' password managers are at least as secure as other password managers (and often much more secure), and they're all trivially easy to use and can automatically sync passwords across devices. And they're free.