badwhitevision
Forerunner
Until Vaultwarden, I was never comfortable storing passwords anywhere else. Even worse, I used to use variations of the same password, because I am only human and can only remember so much.
Only after Vaultwarden, did I confidently begin storing passwords and used absolutely random characters and absolutely random passwords.
To those saying self hosting BitWarden/Vaultwarden is not a security feature, do you have tips as to improve the security hardening of Vaultwarden?
Things, I could think of
1. Disabling the admin token.
2. Preventing WAN access. (To be done on the router)
3. Setup Reverse proxy with fail2ban.
4. For WAN access, consider something like tailscale.
Only after Vaultwarden, did I confidently begin storing passwords and used absolutely random characters and absolutely random passwords.
To those saying self hosting BitWarden/Vaultwarden is not a security feature, do you have tips as to improve the security hardening of Vaultwarden?
Things, I could think of
1. Disabling the admin token.
2. Preventing WAN access. (To be done on the router)
3. Setup Reverse proxy with fail2ban.
4. For WAN access, consider something like tailscale.