You must log in or # to comment.
Wish they handled it better, but I knew about this a while ago, and the price is more than reasonable.
A decade without a price hike is extremely generous, especially at how cheap their plan was.
They are a FOSS company that makes a fantastic product I’ve been happy with for years, I’ll gladly pay less than $2 a month to support them. Their server code is licensed with the AGPL, the strongest copyleft license there is, which gives me a lot of confidence.
Worse case scenario, they enshitify down the road, we are protected via the open source implementations. We’ve seen this many times in the past, Red Hat > Alma & Rocky Linux, Citrix Xen Server > XCP-ng, Terraform > Open Tofu.
Pay for your open source software, folks 💖
Bitwarden’s Premium version now costs $20 per year,
This is what you’re up in arms about? $1.50 a month?
It’s not about the price itself. It’s about the lack of transparency. Not being open with a 100% increase is not a good look.
I kept procrastinating on self hosting it, but now i will do it tonight and migrate to my own instance.
Problem solved.
Selfhost.Vaultwarden.
Boy am I glad I self hosted … but sadly this means they’ll likely put a stop to that too eventually
vaultwarden != bitwarden. VW is a complete rewrite. they can’t stop vaultwarden.
What makes you think this? Server costs have gone up, Bitwarden has increased their pricing. It’s a big jump, but it’s also still very very affordable (less than $2/mo). How is this indicative of them changing behavior in the future to start trying to take down legally licensed open source projects like Vaultwarden?
It’s the natural progress curve of a forprofit corporation
Lawl I pay for the yearly thing and I’ve never used any paid features, I just wanted to support them. I’m okay with the price increase, but it definitely would have been nice to have an announcement maybe in December or spending the they’re planning that. I wonder if I’m grandfathered into the same price I’ve been paying? Ehhh too lazy to find out. I’ll pay 20, but yah some transparency or forewarning would have been nice for a lot of peeps.
Sadly you’re not grandfathered. You’ll get a 25% discount for the first year if you’re already a paying customer.
Ahhh that’s okay, thank you for the info!
Yeah, not handled well. They’re doing slimy corpo bullshit.
On the other hand, I like that they’re open source and don’t block stuff like vaultwarden.
I hope they can take the extra money and make the product better. Cuz I definitely don’t love Bitwarden, but it’s a better alternative than 1Password.
On the other hand, I like that they’re open source and don’t block stuff like vaultwarden.
YET
Quite easy to fork the client.
Getting it to install through the various stores? Probably not.
free tier is totally fine for 99% of people. if i want a cloud, i pay for a cloud. hike was totally forseeable. its an ass move tho to birry info in a blogpost noone ever read.
yeah i was like, shit 0 times 100 is 0, with a 0, carry the 0…
product: We don’t have syncing. We’re focused on being a password manager User: Boo hoo I cri hard why you do this??? All the other password managers have itttttt
What product are you even talking about? Bitwarden has had syncing for years, if not from day 1
Wasn’t this announced months ago? I know I heard something about it, probably on here even. Either way 20$ a year for Bitwarden is still well worth it.
20$/year is still cheap compared to other password managers, but yeah, the lack of transparency is worrying.
Keepass is free?
Thing is, a large percentage of internet-connected users might have two or more devices. The simplicity offered by a cloud (be it hosted or selfhosted) password manager is a huge benefit.
And unless you’re already running a syncthing-like service for something else, setting it up just for a password manager when other services provide it out of the box, is not worth the hassle usually.
IMO Keepass and Bitwarden aren’t exactly the same, as the latter has cross-device sync built-in.
Lol for years I have been wanting to switch from KeePass to Bitwarden. Mainly cause the UX/UI felt nice to me.
My initial hesitance was that I didn’t love the idea of my passwords being on someone else’s servers. But I found out about Vaultwarden. So I kept my eye on it’s development and longevity. Now that it’s well established, I’d say I trust it now. Next I figured out a way to selfhost without exposing Vaultwarden to the public. Everything seems to be lined up for me to switch.
A few months ago, I decided it was time. After moving my passwords over and getting a flow working, I went to sort by most recent… Oh wait. You can’t sort by date. You can’t sort lol I sat with this for a few hours and reverted back to my trusted and working KeePass flow.
EDIT: This is one of the most voted feature requests. Also, it’s just table stakes! It’s crazy they don’t have this feature 😂
https://community.bitwarden.com/t/sorting-options-by-date-of-modification-addition-last-use-etc/2484
Why do you need to sort at all? Just search for your password… what am I missing?
Time to self host
To save $10/mo?
20/year
How did you get two things wrong in a two part component?
Get yourself a mini pc or old laptop and control your own future: https://github.com/dani-garcia/vaultwarden
Would love to selfhost. However, I have no trust in my skills to secure my device in the same manner as a provider, and I do not wish my database to be compromised.
Then use Keepass, which is literally just a local app.
I’ve had my VPS exposed to the internet for a while and never been pwned. No professional experience. Use SSH keys, not password authentication. Use FDE if physical access is in your threat model. Use a firewall to prevent connection on internal-only ports.
Vaultwarden will store your passwords encrypted (obviously) so even if your database does get stolen, the attacker shouldn’t be able to read your passwords without your master password.
If you use Tailscale or Netbird, you can avoid exposing your VPS to the internet completely.
I know about Tailscale. I don’t use it because I want my VPS to be exposed to the internet; some of my services are supposed to be public. And those that aren’t, have their own authentication systems that are adequately secure for their purposes. I just don’t need Tailscale so I’ve not bothered with the setup.
Can someone please help me understand why you would want to have your passwords in the cloud? I’ve been using Keepass for about the past 15 years. I always just sync the db between computers/mobiles. Its never been an issue. Is having it in the cloud really that big of an advantage?
It’s convenient, but not much moreso than keeping the encrypted file in your google drive or whatever and pulling it down once in a while.
I’ve tried storing encrypted blobs including a keepass database on Google drive and I always end up with hundreds of conflict copies
Put the keepass database in a folder and use syncthing to sync that folder.
I just run syncthing on every device that needs my password and they all always have an up to date copy of the database.
What do you use to encrypt the files to begin with? For apps that don’t have an encrypted backup option built in.
Keepass encrypts the database with AES-256 by default so there is already a layer of encryption protecting your passwords.
If you use keepass and want to use a third party service to store your files there’s a way to setup an untrusted mirror which will encrypt the files before sending it to that client. That way you still have your files elsewhere (often on a VPS, seedbox or other host) but that host doesn’t have the unencrypted sync folder just in case you decide to put non-encrypted files in there too.
That’s very helpful information, thank you! I’m using bitwarden but looking into switching.
If you use keepass*
I mean if you use syncthing.
Syncthing is what has the ability to set untrusted hosts. You set a password and the files are encrypted with that password before sending it to the untrusted computer.
