4 hours ago
8
Follow ZDNET: Add us as a preferred source on Google.
ZDNET's key takeaways
- Password managers remain vital to your security.
- Linux has plenty of available options.
- These tools are open-source and readily available.
I've been using a password manager for as long as I can remember. To be honest, I can't imagine not using one at this point.
If you're serious about your security, it's time to adopt one yourself. Or, if you're using a password manager that doesn't have a Linux client, now's the perfect time to switch to one that does. And if anyone tells you that Linux doesn't have viable options, they are simply wrong.
Also: How to prep your company for a passwordless future - in 5 steps
Linux offers numerous password managers -- many of which are open-source -- that should appeal to all sorts of users.
But which password managers would I recommend? Read on.
1. Bitwarden
Bitwarden has been my go-to password manager for years. Not only does it offer a Linux desktop client, but you can also host a server instance on your local LAN for even more privacy.
Bitwarden also offers all the features you need in a password manager, including a random password/passphrase generator, 2FA support, passkey storage, sharing, folders, biometric logins, autofill logins, a browser extension, and more.
On top of that, Bitwarden uses industry-leading end-to-end encryption, so you know your vaults are safe from prying eyes.
Also: 7 ways to get more out of your Bitwarden password manager
I've tried many password managers, and I couldn't imagine leaving Bitwarden.
You can use Bitwarden for free or look into a premium plan to gain extra features (such as collections, an integrated authenticator, and much more).
Bitwarden is available for Linux, MacOS, Windows, Android, and iOS.
2. Buttercup
Buttercup password manager is another open-source option available for Linux. You can install Buttercup as an AppImage (I suggest using Gear Lever for this), and it runs perfectly (even on Wayland).
Buttercup doesn't have its own sync server, but it can connect to a local file, WebDAV, Dropbox, or Google Drive. By connecting Buttercup to one of the cloud options, you can access your vaults from anywhere. Another handy feature is that you can create as many vaults as you want, even a combination of local files and cloud vaults.
Also: 7 essential password rules to follow, according to security experts
Buttercup is also free to use, so there's no plan or upselling.
Like Bitwarden, Buttercup features a user-friendly UI and includes a browser extension for even easier website logins.
Buttercup is available for Linux, MacOS, and Windows. Buttercup for Mobile is available for iOS and Android.
3. Pass
Pass is a command-line password manager that stores each password in a GPG-encrypted file named after the website for which the password is used.
Pass isn't the easiest password manager to use, and it doesn't have all the bells and whistles of the other options. However, if you prefer a simple tool that can be run from the command line, Pass is what you want.
Pass does include a random password generator and the ability to connect to a Git repository; speaking of which, if you're used to working with Git from the command line, you'll have no problems working with Pass.
One benefit of using Pass is that you won't have to worry about anyone who doesn't have Linux or Git experience guessing your passwords.
Pass is only available for Linux.
4. KeePassXC
If you've ever used KeePassX, you'll be glad to know that KeePassXC is the community fork of the original KeePassX.
KeePassXC is very easy to use, but it's essential to note that it is an offline-only solution. This can be a very good thing if you're serious about security and do not want the possibility of someone intercepting data packets between a desktop client and a server (or cloud host). Yes, it requires you to always have access to the machine hosting KeePassXC, but for those who place a high priority on security, this could be a great option.
Also: Why multi-factor authentication is absolutely essential
KeePassXC doesn't have the best-looking UI or all the bells and whistles of the other GUI apps on this list, but for anyone who wants to keep it simple (and doesn't need online support), KeePassXC is a great option.
KeePassXC is available for Linux, MacOS, and Windows.
5. Passbolt
Passbolt is another open-source option, but it differs slightly. If you use the cloud-hosted option, you'll have to pay for the service. Alternatively, you can opt to host Passbolt yourself for free.
The self-hosting option allows you to bypass a third-party cloud host and keep everything within your LAN. That's an added layer of security, without bypassing the ability to access your vaults from any system within your network.
Also: How passkeys work: The complete guide to your inevitable passwordless future
One thing to keep in mind: The self-hosting option does require an understanding of how Docker containers and Linux work. If you're not familiar with either of those platforms, I'd suggest skipping Passbolt. Deploying the Passbolt server is not for the faint of heart.
Once you have your server up and running, you can use the web-based UI or even from the command line.
Passbolt is a great option for individuals, but it really excels for teams.
Passbolt can be installed on Linux servers and used via any web browser on your LAN.
Get the morning's top stories in your inbox each day with our Tech Update newsletter.
English (US) ·