I forgot my Bitwarden password and I know most of the words, I am missing one word and I know the starting letter of of the word. Is there like a strategy to guessing passwords? Is there a program to assist in guessing passwords? I feel like guessing manually would take months.

  • Kit@lemmy.blahaj.zone
    link
    fedilink
    arrow-up
    7
    ·
    1 year ago

    Did you pay for Bitwarden? If so, contact their customer support. They’re helped me out of a jam before in an Enterprise environment.

    • WtfEvenIsExistence@lemmy.caOP
      link
      fedilink
      English
      arrow-up
      5
      ·
      1 year ago

      I don’t have paid plans, but even if you did, how does support even help? Isn’t it supposed to be end to end encrypted?

      • Hildegarde@lemmy.world
        link
        fedilink
        arrow-up
        11
        ·
        1 year ago

        Paid enterprise customers can configure bitwarden to have an emergency account recovery option. This lets them recover access to bitwarden using the orginization’s private key.

        Its not an option normal users have. Good luck remembering your password.

        • HeyThisIsntTheYMCA@lemmy.world
          link
          fedilink
          English
          arrow-up
          1
          ·
          edit-2
          1 year ago

          You’ve just given me a good reason to pay for bitwarden (if my password wasn’t “photo photo photo gift map” and I was somehowgoing to forget that)

        • Asthmatic_Goose@lemm.ee
          link
          fedilink
          English
          arrow-up
          17
          ·
          1 year ago

          “Hello, Bitwarden? I’d like to hack one of your customer’s accounts that I do not know the password to, allowing me to access all of the passwords you are storing for them. I mean me. Because it’s my account, I promise. Pretty please?”

            • SolOrion@sh.itjust.works
              link
              fedilink
              arrow-up
              6
              ·
              edit-2
              1 year ago

              Doesn’t matter. Passwords aren’t stored as plain text in any scenario where it is even remotely important to security. It’s entirely too easy to access otherwise.

              They have absolutely no way to confirm your password is accurate unless it’s accurate.

              • xigoi@lemmy.sdf.org
                link
                fedilink
                arrow-up
                1
                arrow-down
                2
                ·
                1 year ago

                They do: since it’s only one word missing, they can easily brute-force it themselves.

        • WtfEvenIsExistence@lemmy.caOP
          link
          fedilink
          English
          arrow-up
          1
          ·
          1 year ago

          I doubt they’d do that. That’d just allow anyone to claim to be the rightful owner and get an easy way to brute force.

          Might as well send me the hash of the password and let me locally brute force it.

          Hmm… maybe I should ask. I doubt they do it tho.