Keepass encrypts the database with AES-256 by default so there is already a layer of encryption protecting your passwords.
If you use keepass and want to use a third party service to store your files there’s a way to setup an untrusted mirror which will encrypt the files before sending it to that client. That way you still have your files elsewhere (often on a VPS, seedbox or other host) but that host doesn’t have the unencrypted sync folder just in case you decide to put non-encrypted files in there too.
Syncthing is what has the ability to set untrusted hosts. You set a password and the files are encrypted with that password before sending it to the untrusted computer.
Keepass encrypts the database with AES-256 by default so there is already a layer of encryption protecting your passwords.
If you use keepass and want to use a third party service to store your files there’s a way to setup an untrusted mirror which will encrypt the files before sending it to that client. That way you still have your files elsewhere (often on a VPS, seedbox or other host) but that host doesn’t have the unencrypted sync folder just in case you decide to put non-encrypted files in there too.
That’s very helpful information, thank you! I’m using bitwarden but looking into switching.
I mean if you use syncthing.
Syncthing is what has the ability to set untrusted hosts. You set a password and the files are encrypted with that password before sending it to the untrusted computer.
Excellent, thank you! Looking into it.