Password Managers kindly comment in order of rating 1 (best) to 10(least).

[Futureized]

My preference goes here (only adding this 4 as not tried anything else)1

1. LastPass (using since decade but recent security breach makes me shift to other alternative)
2. 1Password (sites which we register using fb/gmail etc. are stored in vault as well)
3. Bitwarden (due to user opinions, tried once)
4. Roboform (tried with Robo Forms longtime back.

 

[Ssreek]

Should have included Dashlane, notepad and piece of paper as well.

 

[mantheman]

I just use chrome built in and it syncs with my phone

 

[shauvik_r]

Is it not safe to use Chrome's password manager? I also use the one ExpressVPN has.

 

[ibose]

Keepass2offline and Keepass
No online, cloud or sync service is used
What can I say but I like to prioritise inconvenience over everything else when it comes to passwords.

 

[TEUser2K1]

Bitwarden is okay.
Keepass should be considered as an option, I use it together with SyncTrayzor.

 

[ryu_88]

Bitwarden by far, literally the most highly rated Open source password manager with monthly security audits, nothing can be safer

 

[DuKe_cHD]

I used LastPass until they pulled that ridiculous device limitation stunt. Now I'm using Bitwarden, and it's great. I don't miss LastPass at all, not even a little bit.

 

[sabkabadlalegaterafaisal]

I self-host a Vaultwarden instance. It's free and open to the public. Let me know if anyone needs it. Alternatively, consider paying 10$ to official BItwarden folks per year, they make a great product and are completely worth it.

A lot of my friends use my vaultwarden instance while i have shifted to a KeepassXC (on desktop) + KeepassDX (on android) setup since it has AutoType + Multiple databases (logins, totp, recoveries).

 

[Ssreek]

For the sake of us, uninitiated folks, how is storing passwords through Google account password manager differ from using these password managers?
Just google knows our passwords or are there any better reasons?

 

[sabkabadlalegaterafaisal]

For the sake of us, uninitiated folks, how is storing passwords through Google account password manager differ from using these password managers?
Just google knows our passwords or are there any better reasons?

Just a quick look at it suggests that it locks you into using Chrome and Android to use Google Password Manager while KeepassXC is completely offline and the product is free and open source. With bitwarden, you can choose to self-host (run your own server) or just use the official instance (bitwarden.com). In all these cases, of course, passwords (and all secrets) are client-side encrypted (meaning they are encrypted on device before being sent to the servers). Just that using Google Password manager will lock you into... Google products while other products run basically everywhere (and likely have more features).

 

[Heisen]

Google password manager for me, works everywhere on PC, android, apple iOS-safari. It also notifies you if any of your password is found on the latest password dump leaks.

On apple devices you can select your password manager, you don't really have to use the apple one. They allow other password managers auto fill integration into all apps/websites.

 

[gourav]

I use Bitwarden for general password storage and Keepass for some specific usecases and as a backup.

For the sake of us, uninitiated folks, how is storing passwords through Google account password manager differ from using these password managers?

You want your passwords to always be encrypted. Since your browser's password manager does not have a separate password/key to unlock, your passwords are not encrypted while your browser is running.

On dedicated password managers, you can set them to time out/lock your vault after a certain amount of time.

You also cannot transfer out of Chrome if you wanted to use Firefox some day. Google, of course, likes this as it locks you down to their products.

It also notifies you if any of your password is found on the latest password dump leaks.

While this might seem like a nice feature, this of itself tells you that the password management is not zero knowledge. Bitwarden doesn't know your passwords. All encryption happens client-side and there is no way for someone to read your passwords off the BW server. Google, of course, can read your passwords, which means there's an entry way for a malicious actor to do the same.

Zero knowledge is the only password storage technique I can fully trust. The only downside of this is that you lose your account if you forget your password.

 

[Ssreek]

I use Bitwarden for general password storage and Keepass for some specific usecases and as a backup.

Whoever thought naming a password manager as keep ass lol...

You want your passwords to always be encrypted. Since your browser's password manager does not have a separate password/key to unlock, your passwords are not encrypted while your browser is running.

On dedicated password managers, you can set them to time out/lock your vault after a certain amount of time.

So, the issue here is if browser is compromised, only then passwords are compromised?

You also cannot transfer out of Chrome if you wanted to use Firefox some day. Google, of course, likes this as it locks you down to their products.

Android exists, so does youtube. I don't know if we can ever get out from Google.

While this might seem like a nice feature, this of itself tells you that the password management is not zero knowledge. Bitwarden doesn't know your passwords. All encryption happens client-side and there is no way for someone to read your passwords off the BW server. Google, of course, can read your passwords, which means there's an entry way for a malicious actor to do the same.

Zero knowledge is the only password storage technique I can fully trust. The only downside of this is that you lose your account if you forget your password.

Something like that happened when I was using Lastpass and some of those passwords are gone. This was few years ago, after this happened I only used google password managers.

 

[calvin1719]

Google password manager for me, works everywhere on PC, android, apple iOS-safari. It also notifies you if any of your password is found on the latest password dump leaks.

Still needs Chrome installed and is Chrome dependent.

 

[Black_Hawk]

Is there an OFFLINE software which keeps a simple record of your password for each website? Doesn't have to sync it to any account, just purely offline password record keeper of sorts.

 

[Ssreek]

Still needs Chrome installed and is Chrome dependent.

Agree. Sometimes even if chrome is there, password won't fetch from chrome to safari and I have to manually do this. Probably some bug or whatever.
---

Started using bitwarden, seems it will take some time to get used to it and save passwords here instead.

 

[sabkabadlalegaterafaisal]

Agree. Sometimes even if chrome is there, password won't fetch from chrome to safari and I have to manually do this. Probably some bug or whatever.
---

Started using bitwarden, seems it will take some time to get used to it and save passwords here instead.

There should be a way to export and import passwords. And when you use the bitwarden browser extension, it can autosave and autofill passwords for you.

 

[Ssreek]

There should be a way to export and import passwords. And when you use the bitwarden browser extension, it can autosave and autofill passwords for you.

Import and export options exist in both, but google doesn't allow to selectively pick passwords. Either all or nothing.

 

[sabkabadlalegaterafaisal]

Import and export options exist in both, but google doesn't allow to selectively pick passwords. Either all or nothing.

Is there a problem in exporting everything?