B
- Category
- Passwords · SaaS alternative
- Cost
- Freemium
- Country
- US
- Licensing
- Mixed
- Platforms
- Web · iOS · Android · Linux · macOS · Windows
- Self-hostable
- Yes
# PROS AND CONS
+ what works
- +Generous free tier with unlimited passwords and unlimited device sync
- +Clients, server, and SDK are open source under GPLv3 or AGPLv3
- +Official self-host path via the Bitwarden lite single-container Docker image
- +Regular third-party security audits with public reports
− watch out for
- −US jurisdiction and Azure-hosted cloud vaults are a non-starter for some threat models
- −2024 SDK relicensing episode dented community trust even after the rollback to GPL
- −Secrets Manager SDK (sdk-secrets) remains under a proprietary Bitwarden license
- −Free tier limits Bitwarden Send to text and caps hardware key 2FA at five keys
# PRIVACY NOTES
Vaults are encrypted client-side with a key derived from the master password before being sent to Bitwarden's servers, so the operator stores ciphertext only. Cloud vaults run on Microsoft Azure in the US or the EU, region selectable at signup. Bitwarden Inc. is based in Santa Barbara, California and is therefore subject to US legal process, though there is little plaintext for them to compel. The company publishes third-party security audits and holds SOC 2 Type 2.
# REPLACES
icloud-keychain
# TAGS
#password-manager · #foss · #self-hostable · #e2ee
# DOES THIS WORK FOR YOU
# NOTES FROM PEOPLE WHO TRIED IT
Comments (0)
No comments yet. Be the first.