After the LastPass screw up, I don't think I can trust any password managers. Even if it is open source, audited by hundreds of experts, there is no guarantee. 2FA on everything sure. But all those secure notes for example leaks.

What is a good solution?

Building Karma - onchain contributor reputation products  /karma

You could self-host Bitwarden but you'll have to do a lot configuration and you'd inherit all the security risk.

You could use KeePass which is completely offline by design, but there's a big convenience hit especially across devices.

Venture Partner at marinventures.com | Security Consultant at horizonslaw.io | Cybersecurity M.S. Candidate at gatech.edu