Useful links#
How do Passwords work: https://www.kicksecure.com/wiki/Passwords
Local Password Manager: https://keepassxc.org
Self Hostet Password Manager: https://github.com/dani-garcia/vaultwarden
Online Hostet: https://bitwarden.com/
Passphrase generator: https://diceware.rempe.us/
What are Password Managers?#
The question sounds stupid as the name more or less says it all, but what is a password manager?
A password manager is an application that stores passwords, user names and more and can generate passwords. It’s like an electronic notebook for all your login data.
How do they work?#
Password managers work by creating a database where the information is stored. The database is then secured with a master password. This is required to decrypt the database.
The master password is the only thing you have to remember. This makes it easier to create different passwords for all possible accounts. This prevents you from using the same passwords over and over again.
Types of Password Managers#
There are two types of password managers. Server based and local.
Server Solution#
With the server-based solution, you have a central server where a user is created and all data is stored. This can be a local server or one from a provider.
The advantage is clear, because everything is stored on a server, you can access it from all end devices and changes are immediately available on all devices. The disadvantage is that it is a server and a server must be secure otherwise it could be hacked and all data can then be stolen.
Local Solution#
The Locale solution is simply an application on your end device. It creates an encrypted file on your device where all data is stored.
The advantage may not be immediately clear. But the advantage is that the password manager is not server based. It does not communicate with the network and can therefore only be hacked if someone has direct access to the device, but this is much more difficult as many devices do not allow this as they do not provide anything for other devices. In addition, you can store such password managers in a VM that has no Internet connection and enter the data into the programs using clipboard sharing. Just like QubesOS does.
The disadvantage is of course that it only exists on one device and you have to copy the file to each device so that changes take effect on the other devices.
Which ones should you use?#
This is a difficult question as there are countless and the best ones sometimes require technical knowledge but i recommend 3 all of them are Open-Source:
Local Password Manager: https://keepassxc.org
Self Hostet Password Manager: https://github.com/dani-garcia/vaultwarden
Online Hostet: https://bitwarden.com/
KeepassXC#
KeepassXC is a local password manager that works on all desktop operating systems but unfortunately does not work on smartphones. It does not require any real knowledge of networks or anything else as it is simply a program on the PC.
Vaultwarden#
Vaultwarden is a password manager that you host yourself it is a fork of Bitwarden. This requires a lot of knowledge about networks if you want to use it everywhere in the World.
I recommend using Docker with Portainer, I even have an article about it. https://xenoelectronics.com/posts/2025/the-ultimate-portainer-starter-guide/
Portainer uses stacks to deploy containers. I have the code for Vaultwarden on Github.
https://github.com/XenoElectronics/Docker-Compose-Files/tree/main/Portainer-Stack-Files/Vaultwarden
you can then access the password manager with the IP and port. To use the password manager you have to install the Bitwarden app.
https://bitwarden.com/download/
This must be installed in the browser.
However, the connection must be secured with a reverse proxy with HTTPS. Otherwise Vaultwarden will refuse the connection. I recommend Nginx-Proxy-Manager.
If you want to use it outside your home, I recommend using Netbird or Wireguard.
You can already tell it’s not easy. That’s why I only recommend Vaultwarden to people who know what they are doing.
Bitwarden#
Bitwarden is the only password manager that is hosted online, I would always host everything myself if it is realistic. But not everyone can do that. Therefore Bitwarden is my only recommendation as it is open source and the price is ok.
Like Vaultwarden, you need the browser app.
https://bitwarden.com/download/
Since you have Bitwarden Online and they set everything up, you just have to connect the app to your account and that’s it.
But always keep in mind that you need great trust in the company. Even if you want to use a different password manager. My favorite example is Lastpass.
https://duckduckgo.com/?q=lastpass+hacked+2024&t=ffab&ia=web
They were hacked in 2024 and lost millions of users’ data with their passwords. Just be smart about what you use before you create an account and entrust your data to them.
How to make good passwords?#
Last but not least, I would like to explain how to create a good password. I have two pages here where you can read about it.
How do Passwords work: https://www.kicksecure.com/wiki/Passwords
Passphrase generator: https://diceware.rempe.us/
In short, you should have all passwords created with your password generator. The master password should be a passphrase, as people are not good at remembering passwords that have no logic. Passphrases are word chains where you can make up a sentence yourself to memorize it.
Examples:
Password: QGg5j3Ur9EdqXSn9Jbyd7SsV4KJOSxfEdhS9ImDcpyNgLsz2OX72Ki
Passphrase: reach stubble ladle amusement bottle squeegee pebbly
It is important that the passwords have a high entropy. This is a measured value for the password strength, but password managers usually write the entropy value.
Support me#
I hope this guide has helped you a lot. I would be very happy if you would join my Patreon or donate with Paypal. I am grateful for any support.
Thank you very much for reading and for your time.
If you like to share this artikel click the icons below.