Don’t put all your eggs in one basket again, that’s what makes degoogling such a difficult thing. There’s several proton services I intentionally avoid and use alternatives for so I don’t have to uproot my entire digital life to leave them if they start being shitty. If you go from using all google services to all proton you’re setting yourself up to need the same sort of big migration down the road. 15 years ago google was also an awesome company that kept making incredibly useful things for users just because they could and look at them now.
My only gripe with Proton Pass so far is that I’m used to Bitwarden’s right-click autofill menu and some sites’ 2FA codes don’t automatically pop up for some reason.
Does pass support custom url filters yet? I self host and so I have a lot of 192.168 bookmarks…when I tried pass it had no way to organize them by url prefix (port number).
And so what happens to your passwords if Proton were to go offline and you needed to continue using Proton Pass? Do they have an open source server you can use like Bitwarden does or vaultwarden? Or are you essentially locking yourself into a new walled garden for no reason other than name recognition? Why not just use KeePassXC which is encrypted locally rather than share your password with a third party who can easily capture your private key password?
I think a lot of these cloud-based password vaults will have a local database that syncs with the cloud. I think you can unlock them and access your passwords without internet access
Keyword… unlock, not add information or use them offline where they can sync to an open source backend. They are cloud-based password managers that are designed to operate online. The backend is not open source. It is designed to lock you into a walled garden.
Browser integration with quality biometric login is a beautiful thing. Keepass’ implementation of both is trash, and keepassxc’s browser integration may actually be worse than the original.
That having been said I always recommend to people they use two managers, with keepass being the secure base for things you don’t often need convenient access to like savings accounts, password manager passwords, tax services, etc.
bitwarden, proton, et al I use for the day-to-day…I don’t give any fucks if my Lemmy account is lost for example.
“A walled garden is a garden enclosed by high walls, especially when this is done for horticultural rather than security purposes, although originally all gardens may have been enclosed for protection from animal or human intruders.”
Agreed proton isn’t this
"A closed platform, walled garden, or closed ecosystem[1][2] is a software system wherein the carrier or service provider has control over applications, content, and/or media, and restricts convenient access to non-approved applicants or content. "
Still, that seems like a combo of “comes with the territory of encrypted email” and “their software could use some major improvements”. I think closed platform is closed by design.
AFAIK they haven’t tried to standardize their implementation, which to me implies that they’re not interested in interoperability. That’s unfortunate. I wouldn’t want to be locked in to a vendor like that.
At least some providers do try. FastMail published the spec for their modern, stateless replacement to IMAP through the IETF as “JMAP”, and built on top of existing RFCs where possible.
Nah, fundamentally proton uses the same encryption as everyone else, they just have a central server to exchange keys rather than one of the open servers.
It will cache credentials for a short time so you can still access some of your passwords. It will not let you add new credentials. It’s like a web browser working in offline mode for a period of time. It is a cloud-based password manager with a closed-source server backend.
Just signed up today for the family plan in my ongoing degoogling process
It’s a bit pricey but so far loving it. Specially Proton Pass, coming from bitwarden (which I liked), it’s nicer and faster, much faster
Don’t put all your eggs in one basket again, that’s what makes degoogling such a difficult thing. There’s several proton services I intentionally avoid and use alternatives for so I don’t have to uproot my entire digital life to leave them if they start being shitty. If you go from using all google services to all proton you’re setting yourself up to need the same sort of big migration down the road. 15 years ago google was also an awesome company that kept making incredibly useful things for users just because they could and look at them now.
Maps is what makes degoogling hard ;p
Everything else is pretty straightforward.
My only gripe with Proton Pass so far is that I’m used to Bitwarden’s right-click autofill menu and some sites’ 2FA codes don’t automatically pop up for some reason.
Does pass support custom url filters yet? I self host and so I have a lot of 192.168 bookmarks…when I tried pass it had no way to organize them by url prefix (port number).
Good question, don’t know.
I’ll check it out and report back
Seems to work fine on my web front to deluge
Unfortunately it doesn’t yet. Having same issue.
And so what happens to your passwords if Proton were to go offline and you needed to continue using Proton Pass? Do they have an open source server you can use like Bitwarden does or vaultwarden? Or are you essentially locking yourself into a new walled garden for no reason other than name recognition? Why not just use KeePassXC which is encrypted locally rather than share your password with a third party who can easily capture your private key password?
I think a lot of these cloud-based password vaults will have a local database that syncs with the cloud. I think you can unlock them and access your passwords without internet access
Keyword… unlock, not add information or use them offline where they can sync to an open source backend. They are cloud-based password managers that are designed to operate online. The backend is not open source. It is designed to lock you into a walled garden.
The unlocking happens locally. it’s simply decrypting. also, i think you can export the data from proton pass.
it’s a cloud solution. keepassxc works great and I don’t know why you want something else to replace it
Browser integration with quality biometric login is a beautiful thing. Keepass’ implementation of both is trash, and keepassxc’s browser integration may actually be worse than the original.
That having been said I always recommend to people they use two managers, with keepass being the secure base for things you don’t often need convenient access to like savings accounts, password manager passwords, tax services, etc.
bitwarden, proton, et al I use for the day-to-day…I don’t give any fucks if my Lemmy account is lost for example.
Proton Pass works offline. Proton isn’t a walled garden.
“A walled garden is a garden enclosed by high walls, especially when this is done for horticultural rather than security purposes, although originally all gardens may have been enclosed for protection from animal or human intruders.”
Agreed proton isn’t this
"A closed platform, walled garden, or closed ecosystem[1][2] is a software system wherein the carrier or service provider has control over applications, content, and/or media, and restricts convenient access to non-approved applicants or content. "
Try using thunderbird and id argue proton is this
Still, that seems like a combo of “comes with the territory of encrypted email” and “their software could use some major improvements”. I think closed platform is closed by design.
AFAIK they haven’t tried to standardize their implementation, which to me implies that they’re not interested in interoperability. That’s unfortunate. I wouldn’t want to be locked in to a vendor like that.
At least some providers do try. FastMail published the spec for their modern, stateless replacement to IMAP through the IETF as “JMAP”, and built on top of existing RFCs where possible.
Nah, fundamentally proton uses the same encryption as everyone else, they just have a central server to exchange keys rather than one of the open servers.
As everyone else like who? Gmail doesn’t do client side E2E encryption at all.
It will cache credentials for a short time so you can still access some of your passwords. It will not let you add new credentials. It’s like a web browser working in offline mode for a period of time. It is a cloud-based password manager with a closed-source server backend.