- Oct 29, 2010
Bitwarden can generate passwords of course. The link you provided discloses up front that the issue is resolved. I didn't switch to Bitwarden for extra security (although I'd assume it's at least as good as LastPass). I switched for the easier to use UI. It used to be a constant PITA to copy passwords, whereas it's incredibly quick and easy with the Bitwarden browser extension. Bitwarden also lets me use my fingerprint on mobile, whereas LastPass refused to. To me, that's not an acceptable balance of convenience vs. security. If my fingerprint is good enough for mobile payments it can also be used with my password manager.Surely Bitwarden can generate passwords for you otherwise it'll be pointless just offering a vault? I'll stick to Lastpass thanks specially after reading this https://firstname.lastname@example.org/bitwarden-doesnt-care-about-security-59e2ef87870a. Lastpass and Lastpass Authenticator is free whereas with Bitwarden you have to pay for TOTP.
Paying $10 a year is less than half the LastPass Premium cost, and more than reasonable to support quality development. I don't need any fantastic service I use to be free, as it often begs the question as to how the provider is generating revenue.
In any case, using any password manager with a YubiKey 4 makes it exceptionally unlikely that you're going to be hacked. The comfort of the nice Bitwarden UI and a USB/NFC authentication key to cement the level of security is all any consumer is likely to need.
Yeah, it's pretty dumb to use password management features in any browser. Also, there's no way of knowing if Bitwarden, LastPass, 1Password etc. are going to get hacked or not. By all indications, they seem to be extremely secure. There's only so much you can do for your online security as an ordinary consumer without greatly inconveniencing your life. Personally, I rate everyone:Well, mixing browsers up with secure logins is already a problem. On that site I linked, passwordgenerator that have this in big bold writing further down
8. Do not let your Web browsers( FireFox, Chrome, Safari, Opera, IE ) to store your passwords, since all passwords saved in Web browsers can be revealed easily.
In that article:
I can hear a tiny alarm bell going off inside my head just reading what that guy did. Yes the functionality should be rock solid but I'll tell you what, I just do not.....trust......browers.
- uses any mainstream password manager like Bitwarden
- has USB/NFC 2FA like a YubiKey 4 (which can be acquired cheaply by signing up for WIRED magazine)
- has any of the top performing antivirus solutions on their system
- blocks ads in their browser
- ensures their operating system is up to date
- don't use pirated software and games
Those simple steps give you a unique nightmare password for every website, make gaining unauthorised access to your vault extremely unlikely and largely eliminate your exposure to the most common vulnerabilities like user data hacks on random websites, malicious browser ads and local network malware and viruses.