[quaintdev]

I prefer self hosting things so KeePassXC was actually perfect for me. You have KeePass client on each of your devices and Syncthing keeps all devices in sync. No third party involved! If you are looking to self host I compared few applications in my blog post below

https://rohanrd.xyz/posts/self-hosting-password-manager/

[JZL003]

I think the dropbox sync is pretty good. I self host and I know the keepass db is encrypted but I don't want to worry that my self-hosting is always immediately up to date. And I trust dropbox well enough, I think

I also don't love keepass getting access to my entire dropbox. But the easy solution is just to make another dropbox account with just the keepass file, and share it with my main dropbox, it'll sync the edits but force insulate the keepass permissions to a single file

I do the same with org-mode sync, might as well

[kayodelycaon]

Self-hosting seems somewhat at odds with the family-friendly requirement.

[ykonstant]

Regarding this, I think I am doing something stupid: I am syncing my keepassxc database with syncthing, and I am also using a keyfile. The keyfile, I copy manually from my computer to my other devices. But when it comes to my phone/tablet, I copy the key to some random location in the android filesystem, say DCIM. Is that... like... ok? Or is it something any app has access to and people now have my key potentially?

[_Algernon_]

Android is a lot more sandboxed than desktop OSes, where you already have this situation: All software that runs can access your keyfile (hypothetically). I wouldn't be to worried. They still need access to you kdbx file, your password, and know that your keyfile is a keyfile.

Seems like a low risk unless your threat model includes nation state which performs a targeted attack against you.

[riedel]

Also using Keepassxc. However, I really would love to have sth audited and with a documented threat model. I have the feeling that those programs are developed by enthusiasts and probably would not withstand a serious attack (but this not really the typical family worries about neither do I)