Bitwarden

The Bitwarden native iOS app is now in General Availability (GA), allowing iOS users to fully experience enhanced performance and an improved user experience. Whether you’re new to Bitwarden or a long-time user, explore this latest update by downloading the app here.

For feedback, add comments to this Reddit thread, Going native: The future of the Bitwarden mobile app,  or provide feedback in the beta section of the community forum!

Their docs say it requires BitWarden Premium (security seems like a weird thing to paywall but hey I'm grateful there's a free option at all!) but I've seen a few older posts saying you can still set up a yubikey on the free tier using some kind of TOTP mode. Has anyone tried this, or knows how it works?

Update ASAP.

I understand that if you have Bitwarden (or any password manager or browser) configured to autofill your password when it encounters a "password" field on a web form, an easy exploit is for the web form to have hidden form fields (e.g., address, phone, email, ssn) and your autofill app will fill in your info into those fields, even though you only wanted it to autofill the login.

But when you have autofill turned off and you click in a form's "login" field and select a login from Bitwrden's contextual menu, Bitwarden automatically also fills in the "Password" field. Does this mean that the exploit exists even if autofill is turned off, as long as you're using any form of an "auto-fill" function?

I set up BitWarden for my mum ages back and thought nothing of it. She's been using it fine and hasn't had a problem. Only, now that I've gone to set it up on a new device for her, I'm realising I don't remember her master password. Neither does she. She's been using the biometric login the whole time. Anyone know any way around this?

cross-posted from: https://lemmy.world/post/16132410

The Bitwarden addon has a bug that frequently logs you out

cross-posted from: https://lemm.ee/post/33197502

The ports 80 and 443 are already used by Adguard Home. I didnt find any way to change those ports for Bitwarden.

App can now be used to create and sign in with passkeys.

Some further context:

Right now the mobile apps are using a Framework called Xamarin which enables crossplatform mobile releases. Since it has become a roadblock for them (e.g. needed to wait for Microsoft to support passkeys in Xamarin) they are planning to switch to native apps (Swift for ios and Kotlin for android). Source

cross-posted from: https://lemmy.world/post/14912799

Bitwarden Authenticator is a standalone app that is available for everyone, even non-Bitwarden customers.

In its current release, Bitwarden Authenticator generates time-based one-time passwords (TOTP) for users who want to add an extra layer of 2FA security to their logins.

There is a comprehensive roadmap planned with additional functionality.

Available for iOS and Android

Given that passkey support has been out for a few months, I'm wondering if you've switched any of your existing logins?

BitWarden is my password manager of choice, I use it a lot. But one thing I find frustrating and honestly, nonsensical, is why it doesn't support ports out of the box? I have a bunch of services on different ports and would hope BitWarden would recognise that, but it doesn't? It's not a huge thing as I can always search, but it's one of those little niggly things.

I have what may be a stupid question...

How is it your master password is both used to decrypt your vault and used to authenticate with bitwardens public servers to acquire a copy of your vault/view it in the web app, but bitwarden can't use that password entry to decrypt the vault themselves?

(please correct me if I'm misunderstanding, as I use self-hosted vaultwarden for my server instead of the public ones)

I'm wondering how many are self hosting and if there's any benefits to doing so?

I’m hearing people really love 1password. I believe they also were the first ones to come up with a mobile-friendly implementation prior to iOS/Android support for third party password managers.

Seems like 1password has been and is on the ball as far as having the freshest features the fastest.

Has anyone heard of a timeline for this to be implemented? All I've heard is "soon".

Autofill with the extension seems broken for me. Anyone else with the issue?