this post was submitted on 21 Oct 2024
112 points (100.0% liked)

Open Source

31396 readers
97 users here now

All about open source! Feel free to ask questions, and share news, and interesting stuff!

Useful Links

Rules

Related Communities

Community icon from opensource.org, but we are not affiliated with them.

founded 5 years ago
MODERATORS
 

Over the past 3 years the pace of development in APS has steadily fallen off as maintainers including myself have moved on to other things. I no longer have time and motivation to dedicate to this project, and in the absence of significant external contributions there is no-one else I can offer the project's stewardship to.

To that effect, I will be archiving the repository on Monday, October 14th 2024 at 7AM GST. In the situation that a serious and viable fork emerges, I will help them as much as I can with the transition. The criteria for what counts as "serious and viable" is entirely vibes-driven for now, and may become more specific in the future. In case I determine that a fork does not live up to my made up standard, they will have to come up with a slightly more creative name than "Android Password Store" and watch low 4 figures of cash wither away in OpenCollective's bank account.

top 34 comments
sorted by: hot top controversial new old
[โ€“] [email protected] 38 points 1 month ago (2 children)

Good thing i switched to selfhosted vaultwarden setup.

Sees bitwarden drama, Noooo๐Ÿ˜ญ

[โ€“] [email protected] 5 points 1 month ago (1 children)

Yeah, with all the stuff going on with password managers, I wonder if there's a truly future-proof setup that can be self-hosted and will never have these issues.

I was a Keepass user many years ago, but I'm not confident that a Keepass-like system would work well with some very computer-illiterate family members. Bitwarden is hard enough to teach them, and it's one of the easy ones!

[โ€“] [email protected] 1 points 1 month ago (1 children)

There is no such solution but you could just not update your mobile app and keep using vault warden. Nothing will change for you.

[โ€“] [email protected] 1 points 1 month ago (1 children)

you could just not update your mobile app and keep using vault warden.

Well, I'd prefer that the apps that are a gateway to my most important pieces of data (passwords) be updated to plug vulnerabilities and exploits. If it were any other app/service, then I can live without updates. But not something related to passwords.

[โ€“] [email protected] 1 points 1 month ago (1 children)

Someone will fork it, once Bitwarden close the source you won't know if they are even patching vulnerabilities.

[โ€“] [email protected] 1 points 1 month ago

Yup. I'm either hoping for a more sustainable alternative, or a fork with active updates.

For now, I'm holding my position, but preparing for an exit from Bitwarden.

[โ€“] [email protected] 4 points 1 month ago (2 children)

vaultwarden is perfectly fine. we just need to fund 3rd party clients for platforms. on android we already have keyguard, albeit it being only source available

[โ€“] [email protected] 2 points 1 month ago (1 children)

albeit it being only source available

Isn't that exactly why we need to leave the official Bitwarden client for something else?

[โ€“] [email protected] 3 points 1 month ago (1 children)

yup, my point was we need fully open source clients for all platforms

[โ€“] [email protected] 1 points 1 month ago
[โ€“] [email protected] 1 points 1 month ago

Yeah vaultwarden even has its own web interface so my passwords probably not going to locked behind priopority apps. ฤฐ think i will keep using it for a while at least.

[โ€“] [email protected] 24 points 1 month ago (2 children)

This one hurts... as I use this as my password manager on mobile :{

[โ€“] [email protected] 4 points 1 month ago (1 children)

what are you gonna do now? i might switch to keepassxc but i don't wanna learn new stuff.

[โ€“] [email protected] 6 points 1 month ago

I'm not sure. As long as it keeps working, I'll probably keep using it until a viable alternative appears. I use my laptop more than my phone, so I don't actually need passwords on my phone as often.

[โ€“] [email protected] 3 points 1 month ago

Can recommend KeypassDX you can download it from fdroid. It is compatible with KeepassXC

Anti Commercial AI thingyCC BY-NC-SA 4.0

[โ€“] [email protected] 3 points 1 month ago* (last edited 1 month ago) (1 children)

I was using this app until I created a new gpg key and OpenKeychain did not work because of this https://github.com/open-keychain/open-keychain/issues/2886. I then installed password store inside termux and I am using it as if I am using it from my PC. That works pretty well.

[โ€“] [email protected] 1 points 1 month ago (1 children)

Can CLI applications inside Termux interact with the Android clipboard?

[โ€“] [email protected] -4 points 1 month ago (3 children)

Honestly we need to invent something better than password managers.

[โ€“] [email protected] 6 points 1 month ago (3 children)
[โ€“] [email protected] 3 points 1 month ago

You still need to store those secrets. You would probably refer to a keychain but in the end it is still a password/secret manager.

And the current implementation is not really better, services like paypal still do not allow you to use a passkey on the desktop.

[โ€“] [email protected] 2 points 1 month ago

This is more often 2FA & a password is still needed

[โ€“] [email protected] 1 points 1 month ago (1 children)

Any self-hosted software to recommend?

[โ€“] [email protected] 1 points 1 month ago (1 children)
[โ€“] [email protected] 2 points 1 month ago

Thx. Will check!

[โ€“] [email protected] 3 points 1 month ago* (last edited 1 month ago) (1 children)

Best we have and probably will ever have on the current web. Not sure what the problem is with password managers?

[โ€“] [email protected] 1 points 1 month ago

We have USB/NFC hardware security tokens, as well as OS-integrated passkeys