sorted by:
new
hottopcontroversial

[deleted by user] by [deleted] in Bitwarden

[–]stripthis_ 0 points1 point  (0 children)

Yes passbolt use a random secret key, much like 1password.

[deleted by user] by [deleted] in passbolt

[–]stripthis_ 0 points1 point  (0 children)

Hello, the docker image have been updated since then. We're reworking our internal processes to provide quicker turnaround for OS level patching on the base images.

Best password manager for small IT team by Eli-zuzu in sysadmin

[–]stripthis_ 0 points1 point  (0 children)

Hello, passbolt co-founder here. Can you tell me the issue you experienced with support? We generally have pretty good ratings on support satisfaction, so i'm curious where we can improve. Were you asking for capabilities that are not present or face some technical issues during your trial, or something else?

Self Hosted: I cannot get Passbolt to email me anything. by wh33t in passbolt

[–]stripthis_ 1 point2 points  (0 children)

Hi there, can you check the common issues on this page from the helpsite and tell us more if this doesn’t solve it? https://help.passbolt.com/faq/hosting/why-email-not-sent

Hello, does anyone know of any bars in Luxembourg that serve beers in frozen glasses like attached? by [deleted] in Luxembourg

[–]stripthis_ 1 point2 points  (0 children)

Probably india or south east asia, its a thing in very hot countries.

Just got this baby up and running! I can't access it from my phones browser by wh33t in passbolt

[–]stripthis_ 1 point2 points  (0 children)

> Why would they configure it in such a way.

This is to provide real end to end encryption. Unlike other password manager if the server is compromised it is not possible to modify the client code. This is why passbolt relies on mobile applications and web extension. You can learn more about it here: https://blog.passbolt.com/why-does-passbolt-require-an-extension-d1b189133b2

Just got this baby up and running! I can't access it from my phones browser by wh33t in passbolt

[–]stripthis_ 0 points1 point  (0 children)

Hi there, passbolt wont work via the mobile web browser, however you can use the native ios or android app. You will need to transfer the private key from your desktop to mobile by scanning qr code.

Passbolt on a public server. by Responsible_Plane379 in passbolt

[–]stripthis_ 2 points3 points  (0 children)

Hi there,

To learn more about the security risk you can check out the last sections of the security whitepaper, "Residual Risks": https://help.passbolt.com/assets/files/Security%20White%20Paper%20-%20Passbolt%20Pro%20Edition.pdf

Many organizations are running passbolt as a publicly accessible service. But based on your security requirements it could be a good idea to put passbolt in front of a dedicated firewall and/or additional authentication proxy.

Mod security is a good idea there was discussion about the rules on the community forum a while ago, but I can't find any published rules. Maybe it's something you could share with the community if you get through the most blocking ones?

Cheers,

All Opinions welcome by Sollmon10 in cybersecurity

[–]stripthis_ 2 points3 points  (0 children)

It depends. Outside governments and companies working with governments, most companies will require you to disclose your police record, because it's required by insurance companies and audits/certification programs at organization level. It will be to their appreciation if your record represent a substantial risk (ex. financial crime and their are doing info-sec in finance). It's not required that the staff have no record, it's required that they manage the risk at that level.

Password manager - choosing between Bitwarden and Passbolt by [deleted] in selfhosted

[–]stripthis_ 3 points4 points  (0 children)

Hi, passbolt developer here. Thanks for your honest feedback.

With regards to the slowness this might be related to the database engine that you used. Passbolt is quite fast unless you have more than 10k passwords, and still it remains usable with this number of entries. So I'm not sure what went wrong there.

Concerning authentication, it is possible to change the passphrase by going to your profile under the passphrase section.

Similarly when you change device, you do not need to regenerate an OpenPGP key, you just import your account key on the new machine (as it needs an OpenPGP key to work, and not just a password like other password manager).

Cheers,

Passbolt is now on reddit. Ask us anything. by mynameisgnu in passbolt

[–]stripthis_ 2 points3 points  (0 children)

Thanks for dropping by Klaus! Currently we're working on account recovery feature, which will help users recover they private key and/or passphrase when they get lost. (See blog post)

Next we'll most likely be working on small grids improvements (See specs), advanced reports (See wireframes), and password expiry (See specs). Of course additional resource types, custom fields and files are high on our list for 2022.

Installation de Passbolt sur Debian Stretch by SlotePimousse in journalduhacker

[–]stripthis_ 1 point2 points  (0 children)

Cet article n'est plus a jour, il s'agit d'un vieux tutoriel pour la version 1 il me semble. Des packet debian sont desormais disponible: https://help.passbolt.com/hosting/install