[hmnd0]

> password is provided to the server to partially unlock so a malware server or MITM could get the password

That is completely false.

"The Master Password is cleared from memory after usage and never transmitted over the Internet to Bitwarden servers, therefore there is no way to recover the password in the event that you forget it."[0]

[0]: https://bitwarden.com/help/bitwarden-security-white-paper/

[ROFISH]

Bitwarden does some of the KDF operations server-side which means that a portion of the password (even if it's been through some KDF operations) is sent to the server.

EDIT: https://palant.info/2023/01/23/bitwarden-design-flaw-server-...

[ksala_]

They send the hash of the master key password after it's been encrypted to the server. They then encrypt the hash on the sever side to auth you. They don't send the password itself.

What that article is saying (rightfully, mind you) is that an attacker can mostly ignore the server side round of encryption, because if they have a copy of your local vault, they can just perform the client side rounds and then see if they can decrypt the vault.

This is a problem mostly if you see their claims of 100000 rounds server side, and decide "oh that's fast enough, I'll drop the client side rounds to 5 so my vault is fast to open)"