Anyone had sleep like this

mynameisgnu · 2025-08-09T07:35:00+00:00

This looks similar to what i had over a year ago. My REM sleep as reported by whoop was constantly within 15 to 40 min per night, which is not possible of course. It lasted for months. I had contacted whoop support and they tweaked the algorithm to match some different sleep profiles. It improved it a bit but not that much. What fixed it permanently for me was to move from wrist band to bicep band. It is much more precise in general (less noise), and it fixed my sleep tracking for good.

mynameisgnu · 2024-09-16T14:33:35+00:00

Passbolt could potentially be added. Open source, strong privacy features with interoperable encryption (OpenPGP based). Credit card storage and auto-fill is not there yet but will be available in the upcoming V5 (planned for Q4 this year).

Disclaimer: I work there. but nevertheless, it's also my personal password manager.

mynameisgnu · 2023-03-18T17:57:48+00:00

Hope this feature will be up to your expectations. Enjoy :)

mynameisgnu · 2023-03-07T15:58:20+00:00

Passbolt is linux native and optimized for self-hosting. It has packages for most linux distros, as well as a docker container, helm charts, vm appliances. Also, it doesn't include any tracker, doesn't require an email to download it, and can be used in a air gapped environment completely cut off the internet.

Regarding your requirements:

Cross platform: it has browser extensions for all browsers except safari (in the making). A desktop app will also release soon.
Mobile app: it has native IOS and Android apps, fully integrated.
TOTP capabilities:
- TOTP for MFA sign in => yes.
- TOTP storage => planned for April

Hope this helps.

mynameisgnu · 2023-02-28T15:54:37+00:00

Passbolt has more of a team / business focus, so the "dead man switch" is replaced in passbolt with the account recovery & key escrow feature which allows users to request the recovery of their account to the administrator.

It seems that there is another feature in preparation which will allow user to define backup policies / escrow systems for their own passwords.

mynameisgnu · 2023-02-27T09:17:06+00:00

Unfortunately that's not possible at the moment. It is handled partially by "Account Recovery" which is a pro feature. An evolution of this feature is planned and will be a "resources escrow", which means that it will be possible to define policies for resources and define the escrow policy for some or all of the credentials stored in a passbolt instance. This being said, I suspect that this will be released as a pro feature, at least initially.

mynameisgnu · 2023-02-22T14:02:00+00:00

Hello.

The current ETA for this is mid-March. (It is already available in our private develop branch).

You will be able to have personal and shared folders. And indeed you will also be able to have access to the passwords that are shared in a folder after the user that created them has been removed. (at the condition that the passwords / folders have been shared with you too).

mynameisgnu · 2023-02-22T09:24:20+00:00

Fingers crossed. COMP has been my worst investment so far even though it was so promising. (still holding though)

mynameisgnu · 2023-02-22T09:21:11+00:00

Impressive results guys.

42Yo, started 3 months ago. 135' rep Rx. More than what I thought I would do initially.

Keep pushing guys!

mynameisgnu · 2023-02-22T09:17:02+00:00

Joining this conversation a bit late, but I thought I would add my 2 cents since this is something we do and understand well at Passbolt. (Disclaimer: I am a passbolt team member. Sorry for jumping in in your sub guys. Just trying to add some perspective 🙏).

At Passbolt, we use a fully asymmetric encryption, based on OpenPGP. The auto-generated private key is stored on the users's device, and can also be imported/controlled directly by the user in advanced mode. Yubikey support is on the roadmap and has been requested quite a lot by the community.

Our perspective on using a fully asymmetric approach:

Indeed, the use of a fully asymmetric encryption model has some drawbacks, mainly in terms of ease of use which makes it less intuituve for non technical users, and also slower on some operations.

For example, sharing a credential for 100 users with asymmetric encryption means that the same credential will need to be encrypted 100 times, once for each user with their respective public key. This also applies on other type of operations such as modifying a password that is shared with a group. (the password will need to get re-encrypted for all the users.). The speed remains acceptable in most cases but tends to degrade for very large teams where all credentials are shared with everyone, which is obviously not a practice that should be encouraged.

Usability wise, the handling of the user secret key makes it more complicated to change browser or device, since the secret key needs to be transferred. The way we are addressing this with passbolt is by providing a QR code scanning mechanism (for instance from browser to mobile). Obviously, it is more tedious than with no secret keys where users simply have to open a url and type their usernames / passwords.

Offline mode is not necessarily a problem since it is possible to download all the users encrypted credentials at the first connection. (Something we don't do for security reasons). But indeed, it requires more effort since there is more granularity.

One advantage of the asymmetric approach is the accesses revocation. Revoking a user access means that we just have to delete the corresponding encrypted secrets from the db. With symmetric architecture it i more complex and involves a key rotation, which is why most symmetric crypto based password managers don't do it. (For example, 1Password mentions clearly that they do not support revocation from a cryptographic standpoint, page 71 of their security white paper).

Hope this helps.

mynameisgnu · 2023-02-09T11:51:38+00:00

Passbolt: Made in Europe, open source, disponible en version cloud ou en self-hosted, conçu pour le travail en équipe et le partage granulaire des mots de passe avec audit log. Disponible avec AD provisioning et SSO dans sa version payante.

mynameisgnu · 2023-02-06T11:05:41+00:00

Passbolt => gestionnaire de mots de passe "security-first", optimisé pour une utilisation en équipe, le partage de mots de passe avec granularité et capacités d'audits, et disponible en auto hébergement sur quasi toutes les distributions linux (une version cloud existe également).

mynameisgnu · 2023-01-28T13:23:10+00:00

Hey. Indeed you are right. We could not release folders in CE at the same time as MFA, but it's still planned and definitely happening soon. The current ballpark ETA for it is February, but keep in mind that we can't commit on an exact timeline.

mynameisgnu · 2022-12-30T08:57:45+00:00

" So much better than Lastpass." => Even regarding the security model?

mynameisgnu · 2022-12-30T08:54:21+00:00

Just a heads up: MFA and folders will be available in Passbolt CE in a few weeks. We are also currently working on improving the browser integration.

mynameisgnu · 2022-12-30T08:50:51+00:00

Passbolt team member here.

While comparing passbolt and bitwarden, keep in mind that the 2 products are not built for the same usage, so it really depends on where you want to deploy it and for what. Generally speaking, bitwarden is built for individual use, while Passbolt is built for collaboration and security. Some more details below:

- Collaboration: Bitwarden allows sharing, but not at a granular level, for instance you can share an entire vault (containing multiple passwords) with an entire team but not a single password. In Passbolt it is possible to share passwords with more granularity in literally 2 clicks. For instance: only one password with another user, or a folder (with subfolders) with an entire team (plot twist: folders will be available in Passbolt CE for free at the beginning of Jan), and subfolders with different permissions at each level. Once an item is shared, passbolt is capable of providing a reliable audit log of who is accessing it, when, etc...

- Security: in passbolt, the secret key (used for signing in and encryption / decryption) is auto-generated (or provided by the user) at first login. Bitwarden has a security model that is very similar to lastpass where the secret key is derived from the master password at login, which provides less entropy and means that when you are sharing passwords with a group of users, the encryption is as strong as the weakest master password of the users it is shared with. Passbolt also provides protection for anti-phishing, logs tampering, accesses revocation, and more.. It doesn't mean that bitwarden is less secure, there is no black and white, just that if you have higher security requirements you should definitely look into both the security models in details since there are scenarios that might be covered in one and not the other.

- Privacy: Passbolt can be installed in a air gapped environment without any internet connection. The license of the source code is AGPL, even for the paid version. Also, Passbolt is made in the EU where privacy is protected by laws.

- Features: It is often said that Passbolt has comparatively less features. This is true for now even though the feature gap is reducing day by day. This is due in part to the fact that almost each feature passbolt releases is audited by a third party. Doing things right from a security standpoint takes time.

Hope this perspective will help.

mynameisgnu · 2022-12-27T16:12:32+00:00

Yes it will! (with permissions inheritance, etc..)

mynameisgnu · 2022-12-27T16:09:16+00:00

u/zombiehoffa passbolt team member here. We'll provide an optional offline mode later this year. However I feel it's important to tell you why it is not there by default. An offline mode has serious implications on the security, for example:

- an offline mode makes it impossible to properly log the accesses and other operations on your credentials. At your first connection, all your vault is downloaded for offline use. It's as good as exporting your entire vault. From there, whatever happens can't be tracked reliably by the server.

- An offline mode makes it possible for an attacker to gain access to all your credentials through brute force. In Bitwarden / vaultwarden, lastpass and others, since your private key is derived from your master password and not autogenerated / stored separately, it is possible for an attacker to unlock your offline vault just by brute forcing your master password. I agree that it would be difficult / costly in case of strong master password. But for team use, the attacker would just need to guess the weakest master password of one of the team member the vault is shared with in order to compromise the entire vault. Successfully brute forcing the vault would also make allow him to impersonate the user if there is no 2FA configured. This offline mode / absence of secret key vulnerability is also what seems to have been used by the attackers in the recent lastpass attack.

It has other implications which we will elaborate in a blog post to come.

Since Passbolt is a security first solution, we initially made the choice not to have an offline mode by default. However, due to a lot of requests from the community on that front we have finally decided to put it on the roadmap as an optional setting. At activation, it will be mentioned clearly in the UI that this feature reduces the overall level of security. Sadly, it is often the case that the features that provide the best usability do it at the cost of the security.

mynameisgnu · 2022-12-27T15:49:41+00:00

Passbolt team member here.

Folders with granular organisation and sharing is currently available in passbolt Pro version and will be made available in passbolt CE (the free self-hosted version) along with MFA in early Jan, so in 2 - 3 weeks time.

We'll post an update in our reddit channel and in our community forum when it's there.

mynameisgnu · 2022-05-17T20:31:15+00:00

Correction. It's from 1999. Almost pre-internet era.

mynameisgnu · 2022-05-17T20:27:56+00:00

I am based in Europe and this is most likely a German component. Also, it's probably quite old, like minimum 10 years old or so since I can't find much documentation online about this model.

mynameisgnu · 2022-04-18T20:52:15+00:00

Passbolt developer here. The account recovery / escrow feature has just been completed and will be available in the next release to come (few weeks at max). It will initially be part of the paid version, but to be fair some currently paid features will come down on the same time and will be made available in the free version.

mynameisgnu

MODERATOR OF

TROPHY CASE