←back to thread

Bitwarden is no longer free software

(github.com)
260 points ferbivore | 4 comments | 20 Oct 24 08:51 UTC | HN request time: 0.923s | source
1. elliotwu ◴[20 Oct 24 10:52 UTC] No.41894510[source]
Enshittification is a natural process, like aging and corrosion.

I adopt a 3-2-1 backup strategy for my Bitwarden password-protected exports, which can be decrypted without needing Bitwarden. In addition, I use a separate non-Bitwarden solution for my MFA secrets. This minimizes damage and facilitates migration in the event Bitwarden degrades, or becomes outright malicious like Raivo. The same would apply to the password manager I'd switch to after Bitwarden in the near future, and any other password manager thereafter.

replies(1): >>41896769 #
2. 6ak74rfy ◴[20 Oct 24 17:00 UTC] No.41896769[source]
This enshittification is surprising for Bitwarden, given how much it emphasized its open source strategy and that practically made a bunch of us recommending it to our friends and family. But maybe not too much because, as you say, its a natural process for organizations.

This is primarily the reason I am careful going deep into the Tailscale ecosystem (which, similar to earlier Bitwarden, is touting a "hey, we are the good guys" horn for now). My network is a critical piece of my infra and I don't want to put too much trust in one company.

replies(1): >>41914638 #
3. drio ◴[22 Oct 24 14:25 UTC] No.41914638[source]
> This is primarily the reason I am careful going deep into the Tailscale ecosystem (which, similar to earlier Bitwarden, is touting a "hey, we are the good guys" horn for now). My network is a critical piece of my infra and I don't want to put too much trust in one company

I love Tailscale, but this has been bothering me too. Actually, I think it's an even bigger concern than with Bitwarden because of what Tailscale does - once you start using it, it literally becomes your entire network.

That said, what Tailscale provides is really important. We need tools like this to push back against how rigid and centralized the Internet has become over the years.

For those worried about this: what are you doing about it? Did you just move to Headscale? Or are you using something completely different? How has that worked out for you?

replies(1): >>41921566 #
4. 6ak74rfy ◴[23 Oct 24 03:40 UTC] No.41921566{3}[source]
Yep, Headscale on a cheap VPS. It has been working great for 3 users (who login via Authelia) and ~10 machines so far.