Feature Request: Password manager

simjim · May 26, 2019, 7:47pm

I would love a password manager that resides on my own internal network. Is this possible? What password managers exist? Any safe?

njoseph · May 27, 2019, 6:17am

We had some discussion about this earlier here

I’m currently using KeePassXC synced between my computers using Syncthing as my password manager.

hanstux · June 1, 2019, 4:51pm

Simular here. I use Keepass and Keepassx on different devices, and sync the keyfiles (the one with *.kdbx with Syncthing

balduin · April 29, 2020, 2:59pm

In my opinion syncing the kdbx files is a workaround not a real solution to: “Feature Request: Password manager”. In believe, the password manager should either be de-central and a copy is on FreedomBox. Or central, where you manage your passwords via application installed on the FreedomBox.

sunil · April 30, 2020, 3:41am

I believe that despite ability to use Syncthing, we can have a password manager app available in FreedomBox. If there is a good password manager already packaged for Debian, that would make it easy to offer a FreedomBox app for it.

balduin · April 30, 2020, 10:58am

There are many password managers out there. With varying quality. My requirements would be:

Web Interface
Offline clients
User/group management
Password sharing

I am not sure if any libre/free password manager can achieve those requirements.

Debian has indeed a page about password manager:

https://wiki.debian.org/PasswordManagement

The Debian page also refers to the ArchLinux page:

https://wiki.archlinux.org/index.php/List_of_applications/Security#Password_managers

Here is a list of password managers I did a quick evaluation on:

LessPass
Teampass
pass -> included in Debian

I am not sure how the FreedomBox Team chooses how to integrate new software. However, the password managers in Linux are mostly local password managers. On the other hand many companies provide hosted password manager services for multiple users. I think it would be nice to provide a path for both user groups.

The approach @njoseph detailed is valuable and works. It should be documented as it only requires Syncthing. However, I can see how people accidentally overwrite there password databases and get angry.

andy.jh92 · February 11, 2021, 6:58pm

What is about bitwarden?

njoseph · February 12, 2021, 10:53am

There is an API-compatible implementation of Bitwarden in Rust (original implementation in .Net) which is considered more suitable for self-hosting.

andy.jh92 · January 8, 2022, 7:31pm

Padloc is also a fully open source, full featured password manager.
https://padloc.app/
https://padloc.app/help/guides/self-host/