this post was submitted on 15 May 2026
115 points (100.0% liked)

Selfhosted

59235 readers
1381 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

  7. No low-effort posts. This is subjective and will largely be determined by the community member reports.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
HybridSarcasm@lemmy.world
HybridSarcasm@lemmy.hybridsarcasm.xyz
115
aliasvault/aliasvault: Privacy-first password manager with built-in email aliasing. Fully encrypted and self-hostable. (github.com)
submitted 21 hours ago* (last edited 21 hours ago) by R1x38rexrper@lemmy.ml to c/selfhosted@lemmy.world
26 comments fedilink hide all child comments
top 26 comments
sorted by: hot top controversial new old
[–] msokiovt@lemmy.today 1 points 2 hours ago

I actually happened to use AliasVault. It's Free Software from the Netherlands for those who are unaware.

[–] Kazel@lemmy.dbzer0.com 3 points 11 hours ago

Thanks but i stick to keepass. It does the job

[–] DevoidWisdom@sh.itjust.works 40 points 20 hours ago

Per the github page "With the API stabilized, we aim to have AliasVault undergo a thorough security audit this stage. We have already initiated conversations with renowned cyber security companies who have taken interest in taking this on."

[–] B0rax@feddit.org 5 points 13 hours ago

Yes! Finally one with email aliases.

[–] savvywolf@pawb.social 33 points 20 hours ago (3 children)

One thing that jumps out at me reading the readme is the fact that it has a built in email server. Email is hard to get right, and I'm surprised a relatively young(?) project is working on getting all the moving pieces together rather than declaring it out of scope.

It'll be interesting to see how it develops.

[–] Coolkat@slrpnk.net 5 points 11 hours ago (1 children)

I'm no expert but as i understood, it's the sending part that's tricky to get right. Lots of handshake to handle, all to probably end up in a spam folder or blocked along the way. But receiving from a publicly acknowledged address ? I think it's fairly simple

[–] cron@feddit.org 1 points 2 hours ago

Even then, there are lots of edge cases with e-mail that are easy to get wrong and might become security risks.

I‘m not saying this applies to this project, this is more of a general concern.

[–] zr0@lemmy.dbzer0.com 2 points 12 hours ago

I would never trust a newly written email server and there is absolutely no reason not to use an already existing as a dependency to this project.

[–] prenatal_confusion@feddit.org 3 points 15 hours ago

Do You know more about the email server part? I understand +addressing but this seems to be more? Do You hand a domain over and it is actually a full MX or is it just an imap client?

[–] AllNewTypeFace@leminal.space 38 points 20 hours ago (2 children)

Has this been audited? It’s easy to claim that something is secure, but there have been products that made such claims and were trivially exploitable.

[–] jay@mbin.zerojay.com 13 points 19 hours ago (1 children)

The Github page says they are aiming to get one done soon.

[–] dreamkeeper@literature.cafe 12 points 10 hours ago

They shouldn't claim that an effing password manager is "secure" until after they've done an audit.

I'll pass, thanks.

[–] absolutetupperware@lemmy.today 7 points 20 hours ago

the true audit is time, unfortunately

[–] hellmo_luciferrari@lemmy.zip 20 points 20 hours ago (1 children)

I'll optimistically sit back and see what comes of this. I'm happy with vaultwarden.

[–] Courantdair@jlai.lu 15 points 19 hours ago (2 children)

Looks promising! And it's refreshing to see something that doesn't look vibecoded in a week. Couldn't find any AGENTS.md or other AI crap so I could actually try it

[–] Prathas@lemmy.zip 9 points 18 hours ago

They spelled "agents" backwards to throw you off! lol jk

[–] TrumpetX@programming.dev -3 points 17 hours ago (2 children)

This is most definitely AI assisted. I won't say vibe coded, but this has the hallmarks.

[–] KairuByte@lemmy.dbzer0.com 16 points 15 hours ago (1 children)

This is a claim that is meaningless. You can say it about literally any software currently in development, and there is zero way to reliably refute it.

It’s like stating your comment was AI assisted.

[–] TrumpetX@programming.dev 1 points 2 hours ago* (last edited 2 hours ago)

Sort of my point, actually. Most software now I'd argue is AI assisted.

[–] slazer2au@lemmy.world 2 points 13 hours ago

Such as?

[–] robocall@lemmy.world 1 points 17 hours ago (1 children)

Do you have thoughts on 1password?

[–] KairuByte@lemmy.dbzer0.com 0 points 16 hours ago (1 children)

I’m curious why you asked this?…

[–] robocall@lemmy.world 2 points 15 hours ago (1 children)

Aren't both of them password managers? I guess I wonder if someone has a preference for one over the other.

[–] KairuByte@lemmy.dbzer0.com 0 points 15 hours ago

They are, it’s just odd to bring up an unrelated software.

I do use 1Password and like it, but I couldn’t compare it to this one.