You must log in or # to comment.
TIL theres a paid version of Bitwarden.
Out of curiosity, what services do you use for sharing?
I use NextCloud for informal shares as its GUI is very similar Microsoft or Google’s -Drive and is easily adoptable. I also host a private pastebin instance for code or guides I think may be helpful, and Matrix for personal stuff. But I do like how Bitwarden/Vaultwarden’s share works – it feels more secure, like WeTransfer. It still has its applications. And Vaultwarden file share is free, size limit is adjustable in server config, and is not limited to what the Bitwarden clients say!
Get yourself a mini pc or old laptop and control your own future: https://github.com/dani-garcia/vaultwarden
Would love to selfhost. However, I have no trust in my skills to secure my device in the same manner as a provider, and I do not wish my database to be compromised.
Then use Keepass, which is literally just a local app.
I have used KeePass, but Bitwarden is far more convenient when you have different devices
Eh. Bitwarden is better in that way, but not by much. It’s honestly not that bad if you just sync the keepass DB somewhere. Whether that’s cloud or syncthing.
Bitwarden’s apps are where it’s a better experience. But there’s still somethings about the apps that are very lacking. Like not being able to sort entries.
I easily sync my keepass db across 5-6 devices.
Or want to share a subset of passwords with someone.
Would you be okay with synchronizing only when you’re on your own Wi-Fi network? If that’s the case, you don’t have to try exposing anything to the Internet.
You can also purchase a server online to install it on, but you’re going to get saddled with some kind of monthly fee there.
Plus you’ll still have to pay at least some attention to security if you get a server.
I’ve had my VPS exposed to the internet for a while and never been pwned. No professional experience. Use SSH keys, not password authentication. Use FDE if physical access is in your threat model. Use a firewall to prevent connection on internal-only ports.
Vaultwarden will store your passwords encrypted (obviously) so even if your database does get stolen, the attacker shouldn’t be able to read your passwords without your master password.
If you use Tailscale or Netbird, you can avoid exposing your VPS to the internet completely.
I know about Tailscale. I don’t use it because I want my VPS to be exposed to the internet; some of my services are supposed to be public. And those that aren’t, have their own authentication systems that are adequately secure for their purposes. I just don’t need Tailscale so I’ve not bothered with the setup.
I never get this excuse except for ignorance (not being mean to you)—you can export your entire db as a text file then encrypt it if you wanted. Also, if your server goes offline its offline first on all devices
I mean that I don’t have the necessary knowledge to make sure no one can get into my network and server, and having my entire life thus possibly vulnerable is too risky. Heck, I can’t even get Caddy to work properly.
Right there with you! Selfhosting Vaultwarden would be cool, but I barely know what I’m doing. I trust Bitwarden’s security knowledge and abilities way more than my own.
Use Tailscale. Don’t expose the port to the public. You’re good to go. On iOS, the Tailscale app allows for on demand joining of your Tailscale network (when you’re off from your home network for example). This makes it easy. On Android it’s not as direct, can use Tasker to achieve this, it’s not great. But there’s a feature request on their repo too.
Alternatively, there’s Netbird which behaves similarly. I haven’t tried it, but have read good things about it.
Neither are US based as well if that’s a concern for you. Tailscale is Canadian, and Netbird is German. Netbird is completely open source. With Tailscale, the CLI and Android apps are open source, and there’s an open source alternative to the control server called Headscale. But honestly, using their free tier is probably enough (for both services).
This might be a good option for you: https://elfhosted.com/
While the increase is not a huge deal because the total is still cheaper than alternatives, the thing that irks me is how they did indeed just announce it via a blog post titled “Bitwarden launches enhanced premium plan: Complete online security for everyone”. This reads like there’s going to be free, premium and premium+ at best, and “we are just adding more stuff to the premium” at worst, not implying a price bump, at least to me. I did not get my renewal email yet, so can’t confirm whether or not they don’t even mention the annual price, but rather just the monthly one. Another thing that kind of bothers me is that they list “Vault health alerts” as a new thing, while it’s always been there. While “Phishing blocker” just seems like a feature outside of the scope of a password manager.
All in all, double the price in exchange for x5 more storage and x2 more hardware keys is fine to me, but I hope they improve their communication and actually properly inform users of upcoming pricing changes.
I had my renewal email come through today. Here is what is says: Your Bitwarden Premium subscription renews in 15 days. The price is updating to $1.65/month, billed annually. As an existing Bitwarden customer, you will receive a one-time 25% loyalty discount for this year’s renewal. This renewal will now be billed annually at $14.85 + tax.
Interesting. I also had mine come through but it had a different message:
Your Bitwarden Families subscription renews in 15 days. The price is updating to $3.99/month, billed annually.
Questions? Contact support@bitwarden.com
It seems there’s a few variants of the message depending on which product you have and not all of them mention the annual price.
That’s the one I got too.
Just note if your company uses Bitwarden enterprise, you’re eligible for a free personal license. (Unless they changed that)
Wish they handled it better, but I knew about this a while ago, and the price is more than reasonable.
A decade without a price hike is extremely generous, especially at how cheap their plan was.
They are a FOSS company that makes a fantastic product I’ve been happy with for years, I’ll gladly pay less than $2 a month to support them. Their server code is licensed with the AGPL, the strongest copyleft license there is, which gives me a lot of confidence.
Worse case scenario, they enshitify down the road, we are protected via the open source implementations. We’ve seen this many times in the past, Red Hat > Alma & Rocky Linux, Citrix Xen Server > XCP-ng, Terraform > Open Tofu.
Pay for your open source software, folks 💖
Paying for good software should be normalized again. One way or the other you’ll always pay. If you don’t pay with your money, you pay with your data.
Yeah, not handled well. They’re doing slimy corpo bullshit.
On the other hand, I like that they’re open source and don’t block stuff like vaultwarden.
I hope they can take the extra money and make the product better. Cuz I definitely don’t love Bitwarden, but it’s a better alternative than 1Password.
On the other hand, I like that they’re open source and don’t block stuff like vaultwarden.
YET
Quite easy to fork the client.
Getting it to install through the various stores? Probably not.
TBH, $10/year is a small price not to have to get my wife to change again after lastpass. She is not equipped to deal with enshittification.
If you do any sort of self-hosting, take a look at Vaultwarden. All the premium functions for free.
Before my entire network setup changed recently for unrelated reasons… I had Vaultwarden running on my home server (TrueNAS) and a free Cloudflare account with a tunnel to my home server and a $5/year domain. Worked for my parents easily and no longer had to worry about the big infrastructure being targeted.
Possibly but the main thing we find useful is the OTP generation. This means we can both use shared accounts without having to ask the other for a code. That’s probably an edge case, and not enough sites support it, but it’s really nice for the ones that do.
I doubt that is available in self-hosting but I’d be happy to be wrong about that. I have a raspberry pi serving up a couple of local things and I could register a domain if I had a use case for connectivity outside the house.
That is totally available self hosted. Nothing is blocked. In fact that’s why I originally switched, reducing unnecessary monthly costs.
OTP codes for websites as well as all the MFA options for Vaultwarden itself. It also supports organizations, so you can share info between multiple accounts on your server. Emergency access, and even a web vault client.
Everything the paid Bitwarden does as far as I’m aware.
That’s pretty freaking awesome, mate. Thank you!
Worth pointing out that Vaultwarden refuses service when you connect to it without HTTPS, meaning wherever you host it you also need to set up some way of providing it with SSL certificates. As a newbie to self-hosting myself, this has tripped me up quite a bit.
Lol for years I have been wanting to switch from KeePass to Bitwarden. Mainly cause the UX/UI felt nice to me.
My initial hesitance was that I didn’t love the idea of my passwords being on someone else’s servers. But I found out about Vaultwarden. So I kept my eye on it’s development and longevity. Now that it’s well established, I’d say I trust it now. Next I figured out a way to selfhost without exposing Vaultwarden to the public. Everything seems to be lined up for me to switch.
A few months ago, I decided it was time. After moving my passwords over and getting a flow working, I went to sort by most recent… Oh wait. You can’t sort by date. You can’t sort lol I sat with this for a few hours and reverted back to my trusted and working KeePass flow.
EDIT: This is one of the most voted feature requests. Also, it’s just table stakes! It’s crazy they don’t have this feature 😂
https://community.bitwarden.com/t/sorting-options-by-date-of-modification-addition-last-use-etc/2484
Why do you need to sort at all? Just search for your password… what am I missing?
You can’t fathom why someone would want to… sort a list…?
I don’t know how to answer this. I think you’re serious, but I can’t tell. Want to read that community post I linked where over 600+ people voted for the sorting ability?
Not really. The search bar at the top will filter for anything you’re looking for. Sorting is redundant.
The link is from February 1st, about a blog post in January. I clicked here thinking Bitwarden just raised their subscription price again haha.
Sorry!
free tier is totally fine for 99% of people. if i want a cloud, i pay for a cloud. hike was totally forseeable. its an ass move tho to birry info in a blogpost noone ever read.
yeah i was like, shit 0 times 100 is 0, with a 0, carry the 0…
I get an email very close to renewal.
Not a great move in terms of transparancy. :/
Wasn’t this announced months ago? I know I heard something about it, probably on here even. Either way 20$ a year for Bitwarden is still well worth it.
Lawl I pay for the yearly thing and I’ve never used any paid features, I just wanted to support them. I’m okay with the price increase, but it definitely would have been nice to have an announcement maybe in December or spending the they’re planning that. I wonder if I’m grandfathered into the same price I’ve been paying? Ehhh too lazy to find out. I’ll pay 20, but yah some transparency or forewarning would have been nice for a lot of peeps.
Sadly you’re not grandfathered. You’ll get a 25% discount for the first year if you’re already a paying customer.
Ahhh that’s okay, thank you for the info!
Bitwarden has a paid version?
Yes, it includes things like a TOTP manager, text file storage, family sharing, etc… Nothing super groundbreaking, but it’s some quality of life stuff that plenty of people have been happy to pay less than a dollar per month for.
Yes indeed.
Bitwarden’s Premium version now costs $20 per year,
This is what you’re up in arms about? $1.50 a month?
It’s not about the price itself. It’s about the lack of transparency. Not being open with a 100% increase is not a good look.
Yeah…they’ve been making a lot of changes to the client, too. I’m not sure what form it will take yet, because idk enough about bitwarden as a company, but get ready for enshittification and forks.
I got worried the first time they started giving the UI all the rounded corners and more clicks to get anywhere or get anything done. Now there are corpo-cute little waving hand graphics and stuff in the UI. I’ve been migrating to local “pass” because these are always bad signs for a product
