[scrollaway]

There are only three meaningfully "correct" recommendations for password managers as of today, depending on the use case: 1Password, Bitwarden, or KeepassXC.

1Password is fantastic, but expensive and closed source. Bitwarden is open source, but lacks certain auditing, team and sync features useful for enterprise. KeepassXC is excellent and open source, but with zero collaboration features is only suitable for self use.

[CuriousCosmic]

There's some collaboration features. You can create "keeshares" between multiple separate databases. All the databases can append, update, or read the share.

You can't delete an entry but you can deprecate it and stop updating it (it's not actually feasible to revoke access anyways).

[scrollaway]

Keeshares seem new, I hadn't heard about them. Seems… interesting. Thanks for pointing them out.

[throwaway24006]

There's also 'pass', created by Jason Donenfield, who also created WireGuard. But I think it's not for laypeople.

https://www.passwordstore.org/

[1cvmask]

Have you taken a look at saas pass that has 2fa as the default and the password manager identifies sites with 2fa?

disclaimer: was involved on the 2fa part of it.

[AvocadoCake]

I used SaaS pass at work for a while, and it made my day a little bit worse every time I had to use its 2FA. The app's login on push notification thing was very slow, and would fail too often (maybe 5-10% of the time). I ended up using the QR code scanning for 2FA more often than not, but even that was slow, not even accounting for for the time it takes a human to unlock their phone and open the app. Doing thing multiple times throughout the workday was a real drag.

It's a shame, because I think the idea of it is nicer and no less secure than Google Auth, but I'd much rather enter 6 numbers than wait for the app.

Disclaimer: This was around a year ago, perhaps it's improved since.

[sour-taste]

And how did you come up with this list of 'correct' password managers?

[scrollaway]

Quite simply through experience.

[jfktn5ntkfl]

Do you think KeePassXC is better than original KeePass?

[scrollaway]

Absolutely, xc has been far better maintained in the last few years.