DEV Community

Discussion on: What password manager should developers use ?

Collapse
vinayhegde1990 profile image
Vinay Hegde

For personal passwords, I use Bitwarden protected with 2-Factor & Biometric lock on mobile devices. (planning to self host this soon)

Enterprise passwords are relatively better off stored in an offline medium like MacPass or its equivalent in Linux/Windows with a passphrase on the secrets file. Storing them in online platforms (1Password, Lastpass) could be risky, especially if they're exploited

Collapse
aahnik profile image
Aahnik Daw Author

self hosting means ? a server in your home or rented vps like Digital Ocean or Linode ? what is better ?

Collapse
vinayhegde1990 profile image
Vinay Hegde

A homegrown server would offer total privacy (due to being on local network) but would be inaccessible elsewhere.

Either of DigitalOcean/Linode or AWS/GCP can be used depending on one's budget, latency, support & ease of use among other parameters.

Thread Thread
aahnik profile image
Aahnik Daw Author

Why ? Is it not possible to expose the home server to the outer world ?

Some configuration in router can be done ?

Honestly I have no experience

Thread Thread
vinayhegde1990 profile image
Vinay Hegde

No problem, let me attempt to clarify as much I can.

A server (here the Bitwarden software) needs a DNS record with public IP Address(es) to be reachable by clients (smartphones, laptops) over the internet.

Hosting it on a home server won't help as home routers have private IP addresses unreachable via the internet & thus the above stated DNS as well.

It'd also be a security breach of one's computing device if the router gets compromised whilst exposing it as a server.

Hoping this helps!