Vaultwarden Breaches Exposed: Unconfirmed Owner Can Purge Entire Organization Vault, Experts Warn
The immediate focus centers on critical flaws within Vaultwarden, specifically the ability for an unconfirmed owner to purge an entire organization vault. Furthermore, fixes were recently deployed addressing major bugs regarding the acceptance of Two Factor Remember Tokens and Recovery Tokens.
Debate rages over proper deployment security. Side A screams for maximum technical security, insisting instances must run only behind a VPN or Tailscale. Side B counters that this setup is impractical, arguing forcing family members to use VPNs just for simple sync is unrealistic. Separately, mpramann drops the warning bomb: if public internet exposure is the goal, ditch self-hosting and use the official Bitwarden service instead.
The weight of evidence points to a constant, urgent need for patches. While self-hosting remains the goal, the community is deeply divided on *how* to safely expose it. The consensus demands airtight security, but the logistical friction between perfect security and everyday usability is the major, unresolved fault line.
Key Points
Unconfirmed owners possess the capability to purge an entire organization vault.
Initial Post (Thread 2) identified this as the most pressing security risk.
Vaultwarden requires frequent updates to patch critical bugs.
Multiple users noted the necessity for patches concerning Token handling (B0rax).
Exposing self-hosted instances to the public internet is dangerous.
mpramann explicitly stated relying on Bitwarden is safer if public exposure is required.
Requiring VPN access for routine sync is impractical for general users.
Side B argued that enforcing VPN use for family synchronization is unrealistic.
Tailscale or segmented private networks are the most robust security postures.
oyzmo asserted that using private networks is a robust best practice for security maintenance.
Source Discussions (3)
This report was synthesized from the following Lemmy discussions, ranked by community score.