Ask HN: Password manager with user-defined cloud storage

[BinaryBird]

Hi, very disappointed with Lastpass, and no longer trusting any cloud password manager, so what are the options for a paid or open source password manager that:

1) has multi-platform, multi-device support, and

2) has the ability to store encrypted password vaults in user-defined 3rd-party cloud file storage like Backblaze, Cloudflare, Google Cloud Storage, AWS S3 etc. much like how Arq Backup and other backup software allow user-defined 3rd-party cloud storage.

Got any suggestions or experience with using any such password managers?

[jrib]

I do not personally use it, but I think keepassxc is one to consider given your needs:

1. https://keepassxc.org/docs/#faq-cloudsync

2. https://keepassxc.org/docs/#faq-platform-mobile

[tmd83]

KeepassXC is good in a lot of ways but I don't use a cloud sync service and finding a good multi platform doesn't seem easy. I do love KeepassXC auto type a lot and website autocomplete is sometimes better than enpass but sometime cause problem which I need to investigate.

[bityard]

KeepassXC with Nextcloud or Syncthing.

Or bitwarden plus the self-hosted server bit.

[pwg]

This one works from local files (no native cloud storage): https://www.pwsafe.org/

If the local directory it uses is mapped (via appropriate means) to one of the above cloud providers (i.e., a "dropbox" style mapping) then the local encrypted file is also stored "in the cloud".

Note also you could simply setup "backup into cloud" of the local file and achieve a similar result.

Here you will find a long list of compatible other variants: https://www.pwsafe.org/relatedprojects.shtml some of which are for multi-platform and/or multi-device support.

[lormayna]

You can self-host Bitwarden, export the encrpyted content via cronjob (https://bitwarden.com/help/cli/#export) and then copy to the cloud file storage that you like the most.

[tcmb]

https://www.enpass.io/

[barbazoo]

Is there any evidence that 1Password is just as bad as Lastpass or is there a chance that they do things right? Anyone with insight here?

I'm not only thinking of myself but also my family. KeePass is not user friendly the way 1Pass is and that's very important.

[Aaron2222]

They have a security whitepaper that goes into detail about a lot of their product: https://1passwordstatic.com/files/security/1password-white-p...

[jaredsohn]

https://www.passwordstore.org/ just creates/uses gpg files to local disk, which you can push to git or sync with a cloud service

[LinuxBender]

Here [1] is a related discussion with some more suggestions.

[1] - https://news.ycombinator.com/item?id=34137643

[jqpabc123]

A text editor and aescrypt are the basics you need to roll your own.

https://www.aescrypt.com