Originally posted by Damnshock
View Post
Announcement
Collapse
No announcement yet.
Concerns Raised Over Bitwarden Moving Further Away From Open-Source
Collapse
X
-
Absolutely silly... that anyone half-way knowledgeable to be using a password database is using someone else's platform to store passwords for this news to affect them
KeePassXC; works everywhere (Windows, FreeBSD, Linux, Android, macOS), open-source, and just like the passwords you're supposed to be protecting on your own, you're in full-control of the database file and can protect it.- The database file itself is encrypted; good-enough for storing it as-is on cloud providers (decent master pass length; etc)
- Google Drive, OneDrive, Keybase, NAS, Android/iOS; that's 5 different free locations you can throw your database file to ensure you never lose it and can access it anywhere
- On Linux, you can put your master pass in secret-tool and call up keepassxc with it through hotkey with this:
Code:bash -c "secret-tool lookup 'keepass' 'default' | keepassxc --pw-stdin ~/'Documents/keepass.kdbx'"
- Likes 3
Comment
-
Originally posted by Espionage724 View PostAbsolutely silly... that anyone half-way knowledgeable to be using a password database is using someone else's platform to store passwords for this news to affect them
- Likes 8
Comment
-
Originally posted by flower View Post
Just put the db file on Dropbox (I have it on my Nas) and you can access it from anywhere
- I need to worry about syncing the files
- There can be conflicts
- I need to install software on _every_ computer
- Now I depend on two things: keepassxc and nextcloud(albeit technically I could download the file through the web... syncing again!)
- On some computers I cannot install keepassxc while virtually everywhere I can use a web browser
- Web UI
Again, it's just not the same :shrug:
- Likes 11
Comment
-
Originally posted by rmfx View PostThat’s always the same story…
Start with good intentions and open mind,
then success happens precisely thanks to these, then money brings greed and fear of outside, then the things turns to shit.
Why can’t people stick with the key of their success?
I've been an OSS dev for ~30 years. I have a semi-popular project. I have made less in nearly 10 years of its existence than a single 2 week period at my day job and I know that there are numerous commercial entities and other, more popular OSS project which use the software and have contributed little or nothing back but likely have made quite a bit leveraging it. Of course this is my choice and my making. I chose the license and choose to continue using it. But it is just a matter of fact.
OSS has a real funding problem and IMO there are technical solutions that could help with it but there is also a significant cultural aspect. On the user side both commercially and personal. OSS isn't a business plan and people could just have made a mistake when getting into business with "OSS" as a tagline and policy. I do wish more companies would be more forthright about these mistakes but the community outrage would likely be more or less the same if they just came out and said "We made a mistake. This isn't working out for us."
What bothers me more about these "rug pull" situations is the way the OSS community responds. One of the primary reasons for advocating OSS is that anyone with the means and will can take the code and do their own thing. No one owns the labor of another person (or their IP). So if some one or some company decides to stop giving out either the people that care can go do their own thing. If people really think Bitwarden's previous setup is profitable then we should expect folks lining up to fork and start a competing business. If not, maybe Bitwarden is correct. If no one is willing to do that or invest the time to fork and maintain their own project then all the "rug pull" complainers seem to be complaining about really is the fact someone is no longer doing work for them for free.
- Likes 10
Comment
-
I dont understand whats the issue, are they removing access to the software unless we pay?
i personally pay for the premium package because I feel they deserve to get paid.
Now i would love to see the same rage against Ngreedia and their closed source anticonsumer software, instead of the devotion that many here gives them…
- Likes 2
Comment
-
PENGUINS, this whole situation is overblown, truly.
Yes, there's a problem that needs rectifying here. But what exactly is unacceptable about the CTO saying they're going to fix it?
I have personally, directly, worked with product managers at Bitwarden for months on end. They are humans just like everyone and make mistakes. And frankly I believe them when they say they're going to work to fix it.
Yes, actions speak louder than words, and we will need to see what they do in the end. But jumping ship over a mistake they have publicly said they would correct? That's very knee-jerk reactions here pengus.
I hope that they make this right, and I believe them when they say they will. But come on, don't be such hypochondriacs over what clearly is a genuine mistake. This is not a pattern of behaviour, and I actually take issue with Phoronix framing this as "moving further away from Open Source" as apart from this example, I really have not seen evidence that is true at all.
I myself self-host Vaultwarden, and have implemented various forms of Bitwarden ("proper") for prior employers. I do not believe there is a better tool out there than Bitwarden/Vaultwarden. My most notable gripe is they don't provide a PPA/Repo for their deb files (*GLARE*), but otherwise, they've been upstanding for many years in the tech community, and that includes FOSS communities.
Let's all calm down and make think about this a bit more, shall we? The sky isn't falling (at least not currently), let's not act like it.
- Likes 13
Comment
-
Comment