LastPass Security vs Cloudron Vault Warden
-
LastPass just had a security breach. Many people might be looking for more secure alternatives and Cloudron makes one available with Vault Warden.
This might be an opportune moment to mention Cloudron and its solutions in places where the LastPass community discuss matters.
https://resistthemainstream.com/major-password-manager-suffers-another-security-breach/
-
Quick question since I have your attention... the secrets/access/policies/tools that I enter.... are these for me and my various automated processes to access, and if so, they are access this through an API or something?? So far I still have to login in to view the details I've entered which is what I do with Vaultwarden. AND, since it's touted as a way to provide said secrets/access/policies/tools to others... they access it automatedly, or through an API which I guess I provide?
EDIT: No one needs to bother answering. I realize I'm asking alot. But if you have a few minutes to spare to answer, that would be fine. I'm reading that one link shared.
-
Hi @Jazim,
it feels like you're confusing Hashicorp Vault with Vaultwarden (which is an alternative implementation of Bitwarden). Vaultwarden is mostly a password manager (with the ability to share passwords with others on the same server through the organization feature), while Vault is really meant for access of secrets through code.
-
I use vaultwarden for business related secrets or where customer data come into play. For my private stuff I still use Chrome sync but also want to switch to vaultwarden.
What came to my mind: By January, a lot of people will (hopefully) switch from Chromium sourced browsers to Firefox because of the manifest v3 implementation. Because I don't want to trust Mozilla nor Google, I tinker with the thought to host my own FFsync (Firefox Sync) server to be more independend with my "cloud" hosted data. Had to think about the risks because hosting something like vaultwarden might be safe but I was unsure if FFsync gets the same care.
