Proton pass Vs keepass

L8437

What are people's thoughts? I've been using keepass for a long time and I like the idea of it being offline and the magic keyboard too

But proton pass does look good too

Graphite

Staying on Topic!
OP:

L8437 What are people's thoughts? I've been using keepass for a long time and I like the idea of it being offline and the magic keyboard too

But proton pass does look good too

Keepass and ProtonPass are two very different things. One's an app, the other a service.
I think all cloud based password vaults should be avoided. The benefit of having automatic sync to all your devices is not worth it, and can often be the thing that pwns your entire life. It is much better just to do syncing manually or with a separate app that syncs directly like syncthing.

[deleted]

Argon2 support is missing (but ready, according to the team), also lacks full support for security keys.
Proton will need some time to make its product more competitive.

[deleted]

I use Kepass DX offline. The idea of having my sensitive data on someone else's server disturbs me somewhat. Lol

Kottonballs

History is full of people using online password managers and then getting hacked. I think KeePass, KeePassXC, etc are much safer.

[deleted]

You can't even import your passwords into protonpass...

[deleted]

https://proton.me/support/pass/import-export-passwords

[deleted]

[deleted] There are no import parameters, I've searched everywhere and your link is useless.

N1b

Not part of your question, but if you consider ProtonPass you might want to check out Bitwarden as well. It is well tested and comes with specific features like Emergency Access that I don't see in other Open Source password managers.

KeePassXC is more secure and fully offline. For convenience and features Bitwarden is the next best thing. ProtonPass is not yet competitive compared to Bitwarden in my opinion, but if it fits your threat model and you are already in the proton ecosystem, it might just be right for you, there are definitely much worse options out there...

SoulKeeper

East or west, KeePassDX is the best.

Relaks

I think it looks promising, for anyone considering a cloud-based and e2ee password manager. But I wish it had launched with a desktop app; that makes it a no-go for me currently. If it really doesn't have Yubikey support, that's also a no-go.

Also, when the current offer expires, the price will become 5 USD per month, which is vastly more expensive than Bitwarden's personal plan (which I currently use). Yes, I get a big discount if I subscribe before the end of July, but long-term it's not a great deal, and currently not a competitive price.

I used KeepassXC for years and I love it. It has all the features I need from an offline password manager, but the inconvenience of manually copying the database file to my phone whenever I updated it finally made me try out online password managers.
I think if Keepass/KeepassXC works well for you, I see no reason to switch. You can always try the free version of Proton Pass in order to compare.

dgzeij

If you can't live without online password manager, at least use Bitwarden.

https://bitwarden.com/pricing/

It's $10/year for personal use. Note: per YEAR.

But you will get about the same functionality with KeePassXC/keepass2android and push changes continously to your favorite free/cheap cloudstorage with Syncthing.

[deleted]

I prefer to use Vaultwarden a own hosted version of Bitwarden that includes Bitwareden premium features for free. I really don't need the premium features but I prefer to host my passwords at my machines instead of use the bitwarden hosts.

dgzeij

[deleted]

That's a valid use of Vaultwarden. As long as Vaultwarden is updated as quickly as Bitwarden, contain everything important, and both your stack and time can fend of any intruder. After it's hidden behind private VPN server with same considerations.

[deleted]

dgzeij of course, my Vaultwarden install is only avaiable, when Im' outside my home network, via a VPN connection.

itsjpb

i use keepass in conjunction with syncthing, which so far has been a perfect solution. no need for anyone else to store passwords imo

f13a-6c3a

I love Proton and what they do for privacy and have Visionary account with them just to support them best I can. The large drawback for me is that use of Proton Pass is entangled with the same TOS as their other services and, however unlikely, it increases the chance of false positive misuse of such TOS (email misuse, spam, drive files, whatever) locking you out of all their services, including YOUR passwords. Proton promises that offline storage of Pass will still let you access your passwords, but they still have to unbundle lockout of Pass from other services.

[deleted]

I'm literally in front of it, and I've tested it on firefox and a chromium browser, I've got the "import passwords" tab, it's impossible to miss.
Check that you're on the latest version of the browser extension

[deleted]

[deleted] I'm talking about the proton pass application, there are no settings for importing either in the application or on their website. Setting up a manager is not recommended, it's at your own risk.

[deleted]

[deleted] And how do you set proton pass as the manager in vanadium?

[deleted]

It says that you can only import via the extension. The android application takes you to this same page.

Setting up a manager is not recommended, it's at your own risk.

What do you mean ?

[deleted]

I don't know if the android app support autofill for vanadium, i don't use proton pass.
If not, just ask proton. They funded GOS, so it shouldn't be a big issue.

[deleted]

And it doesn't even support 2fa in the free version, which is a basic feature in keepass and even Google offers it for free. Open-source software publishers have really believed in Santa Claus... Even bitwarden has removed 2fa from the free version.

N1b

[deleted] And it doesn't even support 2fa in the free version

That is somewhat annoying indeed, but in my opinion it makes for a better business model and it's a good "education" for free users. Think about it: It adds convenience, but reduces security to store the second factor in the same location as the password. I would only store the second factor in Bitwarden (instead of apps like Aegis) if I wanted to make sure somebody else has a convenient way to access my accounts. That would mean company teams or heirs, for both of which I need a business or family account anyway.

leoLela I like Proton in general, but if you keep your passwords on an online service then you will have the following problems:

a security compromise can expose your passwords
you can lose access to the service and to all your passwords (the service goes out of business, the service gets blocked at your location, it's too expensive, etc.)

True and well said. Just want to add that offline managers come with their own risk. Most of us agree KeePassXC/DX is the best offline Password Manager, but not long ago there was a bug which compromised the keyfile of some users who then lost access to all their passwords. It was quickly fixed, but this can happen anytime to any password manager, which is why you always need at least one offline backup of all your passwords and 2fa seeds no matter which software you use.

[deleted] the keepassdx manager is totally encrypted and free (with 2fa) the Google manager is also encrypted and free with 2fa too, so why pay even 1€ is the question!

Google is super secure but some might not want to feed them any data (even encrypted). Both Google and KeePassDX don't have feature parity with a Bitwarden subscription if emergency access, convenient password sharing or breach reports are important. But if your needs for a Password Manager are to be offline and have 2FA support for free, KeePassDX is currently the best. There are use cases for almost all solutions, even ProtonPass in its current form. We just have to make informed decisions according to our threat models.