HACKER Q&A
📣 unodonut

Which password manager do you use / would you recommend?


I still use a unique password for every site, and plan to educate myself on pw managers and switch myself (plus every family member who wants it) to a pw manager.

We don't have any special requirements; I'm into tech but others in the fam struggle with tech (hence, I think a pw manager would be a great help to them, as they constantly forget pws).

Everyone in the family has a smart phone, some have a tablet, most do not own laptops.

I'm starting to educate myself today, starting with a computerphile video on the topic: https://www.youtube.com/watch?v=w68BBPDAWr8

Very keen for any recommendations/pointers from HN community.

  👤 theandrewbailey Accepted Answer ✓
I use KeePassXC on desktop and KeePassDX on Android. I have my own file server, and manually sync the database file through it when needed. No subscription fee, 100% open source and self-hosted.

https://keepassxc.org/

https://www.keepassdx.com/

👤 umairnadeem123
For “family members who struggle with tech”, I’d optimize for: - cross-device autofill that Just Works - account recovery you can actually manage (but not so weak it defeats the point) - sharing a small set of household logins cleanly

In practice that usually means either: 1) 1Password Families (best UX/recovery/sharing, paid), or 2) Bitwarden (good balance, cheaper, can self-host if you want, but UX is a bit more fiddly).

If everyone is already all-in on Apple (or Google), the built-in Passwords/Google Password Manager are honestly hard to beat for simplicity.

Regardless of manager: enable 2FA on the manager account itself, and start migrating important accounts to passkeys where possible.

👤 commandersaki
1Password - the only real drawback is they use an electron app for desktop, and they don't really have a good story for legacy recovery.

Otherwise they have an incredibly strong security model (though it means its a bit complicated to the end user) and they support almost every form of credential TOTP, Passkey, passwords, etc.

They're also working on simplifying unlock methods such as being able to use a passkey to unlock (such as your iCloud passkey), or using your passcode/biometrics unlock double as the unlock for 1P.

It seems to have good integration into iOS as well for autofilling in apps and such.

Also, it supports custom fields where some forms on websites require some additional codes or secrets that normally don't autofill because they're not a password. 1P handles this pretty gracefully by just having a labelled text field stored as part of the login credential and it'll automatically fill that in.

They have a family pricing and it comes out cheaper once you have 2 members using it. Also sharing credentials, notes, etc. with other members is pretty straightforward.

If you just want something to start out with and you're in Apple ecosystem, consider the Apple Passwords app which is free. Having something is better than nothing.

👤 blahaj
Just an anti recommendation: Do not use Lastpass. Reading the security breach section of their Wikipedia article should be enough reason.

For anyone reading this who uses LastPass: Switch away!

👤 i7l
Dashlane.

It works on most browsers, both Android and iOS, and even has the option of family accounts, so everyone has their secret passwords and some shared passwords across accounts that everyone should have access to. It also comes with a free VPN for five devices with Hotspot Shield Pro.

👤 JSR_FDED
I was in your position, realizing I had to do something about how my family manages passwords. I found the built in Passwords app in MacOS was actually sufficient for our needs.
👤 leed25d
I use Bitwarden
👤 verdverm
this may be controversial here, but what google + chrome + android does is pretty great imo

JSR_FDED has a parallel comment for the Apple ecosystem