Our great sponsors
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
>How much time do we have left before Bitwarden gradually becomes as bad as LastPass? 2-3 years? I’m not passing any judgement on this raise, entrepreneur do what they gotta do.
Bitwarden though actually has an API, and in turn interesting community implementation potential such as the Rust-based Vaultwarden [0]. While I agree seeing them get a huge round does raise some concern in terms of the revenue generation pressure (1Password sticks in my mind as a worse example though with their switch to forced subs-only, no local/non-1P vaults, abandonment of native apps etc), to me the real sign would be if they broke self-hosting. But even so, of course with self-hosting one could simply stop there. Doesn't feel like quite the same situation as 1P or LastPass where one was really in a fully vs partially proprietary system.
I'd be OK with paying for updates to quality clients though so long as it was a regular payment system (not paying means staying on that version vs having it stop working).
----
0: https://github.com/dani-garcia/vaultwarden
The code for the server is AGPLv3 https://github.com/bitwarden/server , with only things in the /bitwarden_license/ directory being proprietary.
The code for the mobile apps is GPLv3 https://github.com/bitwarden/mobile/blob/master/LICENSE.txt
The code for the clients is GPLv3 https://github.com/bitwarden/clients
These are all copyleft... with a CLA (contributor license agreement).
The VCs must really believe the company can produce a product based on Enterprise sales which would deliver a value North of $1B. And perhaps they can, as Bitwarden as we know it could be considered a strong beachhead to allow them to expand into other auth markets that have high value (hello Okta, Auth0, etc).
But this doesn't seem that scary for Bitwarden users at this point.
If you're a Bitwarden user and this doesn't worry you, you haven't been paying attention to the history of almost every company that has accepted VC funds.
It doesn't matter how well intentioned the founders are - once you accept that kind of money, it's not your product anymore. You are now in the business of making money, nothing else, and those skewed incentives will start bleeding into their product and business practices sooner or later.
As a company, Bitwarden has been a huge role model for me, and I hope they'll be the exception to the rule. But 100M is a lot of money, and I simply can't imagine it having a net-positive effect on the company and product. But we'll see...
For anyone looking for bootstrapped, open source alternative to Bitwarden, check out Padloc:
https://padloc.app/
The code for the server is AGPLv3 https://github.com/bitwarden/server , with only things in the /bitwarden_license/ directory being proprietary.
The code for the mobile apps is GPLv3 https://github.com/bitwarden/mobile/blob/master/LICENSE.txt
The code for the clients is GPLv3 https://github.com/bitwarden/clients
These are all copyleft... with a CLA (contributor license agreement).
The VCs must really believe the company can produce a product based on Enterprise sales which would deliver a value North of $1B. And perhaps they can, as Bitwarden as we know it could be considered a strong beachhead to allow them to expand into other auth markets that have high value (hello Okta, Auth0, etc).
But this doesn't seem that scary for Bitwarden users at this point.
I moved to pass cli (on i3 with a simple rofi selector) and the FOSS android app https://github.com/android-password-store/Android-Password-S... synced over Syncthing and I never look back
I moved to pass cli (on i3 with a simple rofi selector) and the FOSS android app https://github.com/android-password-store/Android-Password-S... synced over Syncthing and I never look back
The code for the server is AGPLv3 https://github.com/bitwarden/server , with only things in the /bitwarden_license/ directory being proprietary.
The code for the mobile apps is GPLv3 https://github.com/bitwarden/mobile/blob/master/LICENSE.txt
The code for the clients is GPLv3 https://github.com/bitwarden/clients
These are all copyleft... with a CLA (contributor license agreement).
The VCs must really believe the company can produce a product based on Enterprise sales which would deliver a value North of $1B. And perhaps they can, as Bitwarden as we know it could be considered a strong beachhead to allow them to expand into other auth markets that have high value (hello Okta, Auth0, etc).
But this doesn't seem that scary for Bitwarden users at this point.
Any reason not to use Password Safe[1]? It seems to do it all and doesn't require you to trust some Move Fast And Break Things startup's online service.
1: https://pwsafe.org
Related posts
- Show HN: Mapperly – A .NET source generator for object to object mappings
- Password management firm LastPass was hacked two weeks ago. LastPass developer systems hacked to steal source code
- ⟳ 2 apps added, 5 updated at apt.izzysoft.de
- Bitwarden
- What program(s) do you use to remember passwords, including crypto?