The HTTPS page is called Web Vault by Bitwarden, in there you can do management stuff such as changing email or master password and sharing credentials with other users through Collection. If you want to remove the “Your connection is not private” page and “Not secure” on the address bar, you also need a valid CA signed certificate. Then only the Bitwarden HTTPS page is accessible. You also need to set a reverse proxy on the self-hosted machine. With self hosted Bitwarden, you need to use a DNS server that can divert domain to local IP address, such as pihole. If you’re doing local network hosting that is not reachable by internet, you know how shitty HTTPS is when it’s about certificates.
While I was setting it up and scouring the web for info on how to do it properly, I found that everyone saying it needs HTTPS to work. This also means if you forgot your password, there’s no way to retrieve the data anymore, so make sure to find ways so that you will never lose the master password. The credentials stored in their cloud are encrypted, even Bitwarden themselves can’t decrypt because they don’t know your master password. I would recommend using their service if you are not doing self-hosting. Bitwarden actual service is by using its cloud storage and the basic account is totally free. It ticks almost all the boxes for my requirement. So I was looking for something that can do the same thing but hosted locally, and I found out about self hosting Bitwarden by using Vaultwarden. But on the other hand, having auto-fill by Google no matter on desktop or phone makes my life so easy. Been using Chrome password manager for so long, while I only use it for auto-filling non crucial sites, I still feel uneasy that all my credentials are somewhere in the cloud that was just waiting to be leaked. I have been migrating from online service to self hosting service on whichever stuff that was possible and recently another thing that I was looking to migrate is password manager.
0 kommentar(er)
