Did some reading about #WebAuthn / #Passkey.
The specs and promotional materials make much ado of hardware tokens, TPMs, and smartphones, but completely fail to mention how this might be used with software password managers like #KeePass / #KeePassXC.
Hardware tokens are great in corporate environments but horrible otherwise because you can't back them up.
TPMs and smartphones are notoriously insecure. Storing secrets on them is laughable.
Doch die richtige Entscheidung gewesen, zu #keepass zu wechseln.
"Kurz nach der Preisänderung wurden auch die Unternehmenswerte Inklusion und Transparenz von der Seite gestrichen."
@john
You're correct, a password manager that's fully local and managed by you is the best option (if we're talking about KeePassXC/DX).
I recommended #ProtonPass because it's the other most trusted and competitive "cloud/online password manager" option for the average user (afaik), and I'd hesitate to recommend any other potentially "less-established" companies for holding your passwords (but #KeePass does remain the supreme option imo if you can manage it).
Omfg, if I have to change my #PasswordManager again - like with #LastPass - then I'm going straight back to #KeePass.
I know there are open source servers for the BitWarden client, but that's just another goalpost to move.
Bitwarden scrubs 'Always free' and 'Inclusion' values from its website as longtime execs step down - Fast Company
https://www.fastcompany.com/91542655/bitwarden-scrubs-always-free-and-inclusion-values-from-its-website-as-longtime-execs-step-down
It seems the SQLlite version I found available is being deprecated, so that leaves 2 of the 3.
And, @AHollowedHunter - if you already have a NAS box, it might be worth checking if it has an existing app for vaultwarden or maybe even #keePass or something similar.
Anyone got a working solution for passkeys? I have my keepass db on nextcloud and sync to desktop and phone (grapheneOs). It's very per-device.
Was genau ist ein Passkey?
Ein Passkey ist eine moderne und deutlich sicherere Alternative zum klassischen Passwort.
Anstatt sich komplizierte Passwörter merken zu müssen, meldet man sich einfach mit dem eigenen Gerät an – zum Beispiel per Fingerabdruck, Gesichtserkennung oder Geräte-PIN.
Der Passkey wird dabei sicher auf Ihrem Smartphone, Passwort-Manager oder Computer gespeichert.
Wie funktioniert das?
Vereinfacht gesagt bekommt jede Website zwei digitale Schlüssel:
Einen öffentlichen Schlüssel, den die Website speichert
Einen privaten Schlüssel, der nur auf Ihrem Gerät bleibt
Der private Schlüssel verlässt Ihr Gerät niemals.
[…]
#1password #ActivityPubPlugin #authentifizierung #bitwarden #blog #datenschutz #FediBlog #keepass #keepassdx #keepassxc #login #passkey #passkeys #passwort #passwörter #phishingschutz #sicherheit #wordpressBlog #WordPressFederation
Link zum kompletten Beitrag: https://mapf.net/u54k
New post: Open Tabs CW19/2026
A mix of articles I read over the last week, no special topic, but I hope interesting.
https://stoeps.de/posts/2026/open-tabs-cw19/
Reply to this toot to leave a comment - replies will appear below the article automatically.
#ai #arch #bitwarden #cachyos #crypto #cw19_2026 #excel #keepass #linux #mkdocs #properdocs #student #writing
ARGVMI~1.PIF
Jeff
Tien
Zevsu
Thor A. Hopland
LumiWorx - Just Vote Dammit!
Karl Ostendorf
pikzim
Seymour
Christoph Stoettner