Bitwarden
this post was submitted on 13 Oct 2025
102 points (96.4% liked)
Selfhosted
52232 readers
736 users here now
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.
Rules:
-
Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.
-
No spam posting.
-
Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.
-
Don't duplicate the full text of your blog or github here. Just post the link for folks to click.
-
Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).
-
No trolling.
Resources:
- selfh.st Newsletter and index of selfhosted software and apps
- awesome-selfhosted software
- awesome-sysadmin resources
- Self-Hosted Podcast from Jupiter Broadcasting
Any issues on the community? Report it using the report flag.
Questions? DM the mods!
founded 2 years ago
MODERATORS
I'm a little concerned about having OTP and passwords together in one system.
Yah, I can't see a point to have another app/extension when Bitwarden has it built in, and it's a great password manager.
Wait, it does? Including in the mobile app? I don't see it.
Right under Password in the edit screen of an item: Authenticator Key. You put in the auth key the target site provides you when you enable TOTP and it will start generating timed tokens. Usually you'll also get a one-time pad of backup keys, I usually toss those in the Notes of the edit screen there as well in case something goes wrong.
The browser extension also lets you scan the page for QR codes for the TOTP key.
Aegis.
I like the auto backup feature (encrypted) . Then the backup is synced to computer via Syncthing.
Set and forget setup.
FreeOTP+
I've been using Aegis for several years now without any problems. It replaced the Google Authenticator seamlessly.
I use pass for my passwords, and it has an otp extension that I've been using more and more. I used to use aegis but I have needed to switch phones one too many times without having access to the previous phone to be comfortable with phones for 2fa.
Of course, this isn't as secure as a truly separate OTP solution, but it's still better than no OTP/2FA. And I can easily enough back up and restore my 2fa access over the internet, even on a new computer (albeit I need to also backup a PGP key that can decrypt the password store to truly be portable).
I use Proton Authenticator on an iPhone without an account and I am satisfied
I primarily use GNOME Authenticator, but after an inopportune crash, I now also run 2FAuth on my home server as a backup, and now just hope that I remember to do the export/import dance going forward.
Woahhh defo not enough love for Ente Auth in tgese comments. Highly recommend! Its got a beautiful and intuitive UI, completely open-source and is back by super active devs and community 💚
I use Aegis on my phone.
I used to use 2FAS, but recently switched to a self-hosted instance of Ente
keepassxc and a yubikey. And syncthing to keep all devices in sync
Vaultwardwn/bitwarden + a yubikey for bitwarden itself and a few others
I like Aegis.
Aegis ♥️
Aegis
I use Aegis, it works well
Bitwarden. I don't self host it, though. $10 a year for password management and 2FA is fine by me.
I'm on the same plan, I do plan to self host it though as a backup only.
It's niche but I like to point it out whenever I get the opportunity: if your workplace uses Bitwarden Enterprise, every licensed user gets a free family plan that can be linked to any account. I haven't personally paid for BW for years.
Same. Self hosting it sounds nice, and I self host a handful of services, but I don't want to be stuck without passwords in another country with a dead server at home because a power cut happened at some point.
Bitwarden caches your vault to your device, so you don't actually need a live connection to the server.
I had fault in my server this summer and my local bitwarden app wouldn't work without the connection. Same in my laptop, if the connection is blocked by the firewall it doesn't let me load the vault at all.
Oh, that's actually good to know. I guess it makes sense for when you don't have a good connection as well.
load more comments
(1 replies)
Aegis seems like a pretty good 2FA app on Android from what I’ve heard. Personally, I use Ente Auth as sync is very helpful when I don’t have my phone nearby (you can either use the desktop app or use your browser, both work). Don’t think you can self-host sync, though I might be wrong. Ente Auth also works without sync, so there’s that.
I would not suggest using a password manager’s 2FA integration (e.g. Bitwarden, I think Proton Pass has one if you use that?) as it kind of defeats the point of 2FA, since if someone got access to your password manager, they would also get the 2FA codes.
I've been using KeePassXC. I use Syncthing to keep the database synchronized between computers.
load more comments
(5 replies)
I personally use Ente Auth and quite like it, don't use syncing and save an encrypted copy to my PC. I really like that you can see what the next code will be.
Adding to the Aegis chorus.
I also use Proton Pass for some sites that aren't as critical for me / don't have a bunch of PII. It's easy.
Enteauth
Authenticator and Authenticator.
Damn thoe innovative tech companies, what will they think of next.
Proton Authenticator. Has both Desktop and Mobile apps. Free. Don't have to sync to Proton.
load more comments
(3 replies)
since no one mentioned andotp i might have to move away from it…
Yubikey. I dont want to trust my phone, so I use some separate hardware instead
view more: next ›