I'm considering self-hosting a password manager and I'm torn between Vaultwarden and Psono. Vaultwarden seems easier to set up, while Psono appears to have more features. I'm planning to make it accessible via the internet for my family, likely using a Cloudflare tunnel. Before I proceed, I want to know if anyone has experience with similar setups and what risks I should be aware of when exposing a password manager to the outside world.
5 Answers
I recommend to keep your password manager up to date, especially if it’s internet-facing. I use Bitwarden, and I always make sure to have backups. Consider having at least three backups in different locations, and keep one off-site. You may also want to explore Tailscale for secure access rather than exposing it directly to the internet.
I've been using Vaultwarden and it works perfectly for my needs. However, I do think that locking certain features like SSO for more than ten users is a bit concerning because security should be accessible to everyone. But honestly, Vaultwarden has been solid for me overall.
Vaultwarden is definitely quicker to set up, but I felt Psono was more feature-complete once everything was running smoothly. Both have their merits, depending on your needs.
Vaultwarden has actually been tested by the German government, and they addressed the main issues found during their code audits, which makes it a reliable choice for me. Plus, it has a good reputation and is trusted by many users.
Does Vaultwarden still lack SSO auth?
I run Psono at home, and it’s been stable while being accessible through a tunnel for family use. So far, it has been reliable and meets our needs without any issues.
For anything internet-facing, backups definitely matter a lot.