2y ago

Proton Pass is now available

proton.me

Proton Pass: Open Source Password Manager App | Proton

TechNews @radiation.party

irradiated @radiation.party

BOT

2y ago

Proton Pass: Open-Source and Encrypted Password Manager App

proton.me /pass

53 comments

I tried it and its pretty cool and polished, but Bitwarden is WAY better in every poseible way.
I wish that proton would focus on the depth of their present stack, as opposed to breadth.
I've been begging for rclone support for proton drive for a long time now.. without it, I basically have 1tb sitting there useless.
- Same thoughts here. ProtonVPN under Linux is very poorly supported.
  
  Wish I could up vote that 100 times!
  
  It's horrible. I've had to hack together a shell script to switch between countries using a bunch of openvpn config files. The official app broke my Linux Mint network setup.
  
  Just out of curiosity. How is it poorly supported?
  I haven't used it much yet, but the times i have it seems to have worked fine.
I'm pretty sure the app is great, but I am not a fan of putting all my eggs in the same basket. I will keep using Bitwarden for the time being.
- Same here. I'm fine using Proton for my mail & drive, but I also like keeping my passwords separate in bitwarden, and my 2fa separate in my raivo. A healthy separation is good.
I’m a faithful Bitwarden user. No need to switch
Tempting. I've been using Bitwarden for awhile now and it's been fantastic. I am not sure I need to switch.
- You can save a bit of money considering this is currently $1/mo or "free" with some package plans, but rest assured it is not as good as BitWarden or 1P and likely never will be. It's very MVP and Proton has a habit of promising products and features that don't see the light of day for years on end.
  Proton's value to me is the "suite" of products they've developed at a very reasonable price so I don't have to manage and pay 5 different accounts.
- continues to use Bitwarden also.
- Same. I'll continue to use Bitwarden. I think it's good to have other open-source options out there, though. Proton Pass is definitely prettier and will appeal to some people that care more about the aesthetics.
Any strong reasons to switch from KeePassXC?
- Probably not.
  KeepassXC with Syncthing is the best option I've found.
I was in the beta of it, didn't use it though as i am on 1password.
For me it's important that i have a desktop application. I don't want to open my fcking webbrowser anytime i need a password or want to edit some credentials.
And they simply don't have one. I gave it as feedback and they say it's on their roadmap. I said they should take 1passwords desktop as inspiration as it works so fcking good; I really love that floating quick search that you can summon with a keycombo.
Has anyone tried it yet? Two downsides for me:
there's no desktop app
there's no Safari desktop extension (I know most people don't care about this)
It's also more expensive than Bitwarden even at €1/mth
Proton is starting to loose focus in my opinion. I've been a costumer for 5 years only using email and I moved this year to fastmail and I couldn't be happier. Unlimited emails alias, good apps, ability to use thunderbird without a self hosted bridge.
The promise of a encrypted email does not work if your contacts are not on proton too (for me was 100% of my contacts).
If you are really focused on privacy you would choose nextcloud for cloud for example and keypass or Bitwarden for password managers.
I would like them to focus on email client features and stop this side hustles.
- Proton's whole reason to exist is to provide privacy, not email client features.
- I hear what you're saying but Nextcloud is definitely not a viable option for reliable backups. Wayyyy too buggy to trust
  
  Certainly way too buggy if you're selfhosting. At least that was my experience. And if you're not, the privacy component really goes away.
I’m all for open source alternatives to bitwarden but this is non competitive with a mandatory subscription fee. Bitwarden is completely free for most users.
- I thought the same thing but it actually does have a limited free plan. Seems like, similar to BW, it restricts 2FA behind the pass, but also with the pass you get unlimited hide-my-email aliases, multiple vaults to organize in (I don't know what this means), and eventually autofill credit cards.
  This is quite a bit more expensive than BW's paid plan though. Not sure what all differences it has to BW otherwise.
  \
- I think you log in with your proton account, that supports yubikeys for 2fa
Awesome! How does it compare to BitWarden?
- It doesn't have feature parity (yet?). If you're happy with Bitwarden, I'd stick with it.
Great that it has an email alias feature built in. But I use 1Password and to me it's been so great that it'd be really hard to convince me switching to something else.
- For the record, Bitwarden also has email aliasing built-in when generating a username:
  
  Yeah, but with Proton, the email service is built-in, while BitWarden relies on an external service (say a domain you use for catch-all).
If they're going to try to compete with Bitwarden they could at least offer 2FA for free instead of paywalling it as a feature. It was disappointing when Bitwarden did it, and it's even more disappointing with Proton - it's like failing an open book test.
- You shouldn't be using that feature anyway. Keeping your passwords and 2FA in the same place means you only have 1FA.
  
  It's mainly a difference in threat model. 2FA within a password manager is still 2FA for concerns of a website login being hacked by remote adversaries, which is the most important problem to solve.
  If you use 2FA within your password manager, you should still lock that outer-most password vault with 2FA from a separate device (like you said), which solves your password vault being hacked by remote adversaries. Optionally, you can then use aggressive idle-locking of your vault on your personal devices, in case they're stolen physically.
Been using Bitwarden for a few years now, but this one looks tempting. I suppose it has better UI and integrated 2FA sounds nice. Also I’m already a Proton Mail subscriber, so it could be nice addition to the ecosystem.
- BitWarden has integrated 2FA.
Is it open source though?
- Here you go :)
  https://github.com/ProtonPass
What does 2FA authenticator mean? Is it a vault to store your 2FA seeds?
- yeah, although using a password manager as a 2FA provider sort of negates the "2F" part.
  
  Depends. I use 1Password and let it store all my 2FA, because my 1Password login is secured with another 2FA.
2FA is a paid feature!
Goodbye LastPass (I'm aware I should have migrated already but I was holding out for this)
- The most important step a man can take. It's not the first one, is it? It's the next one. Always the next step.
- Oh my god you're still on Lastpass? RUN!

53 comments