Overview
LessPass is a stateless password manager that generates deterministic passwords from a master password, site, and login — no vault file is ever stored or synced. This makes it immune to server-side breaches because there is no database of secrets to steal. A self-hosted server component is available for storing site profiles (not passwords), and the entire stack is open-source.
Where it falls short of 1Password
- If the master password is compromised, all generated passwords are at risk simultaneously
- Cannot store arbitrary secrets such as credit cards, notes, or SSH keys
- Changing a generated password requires incrementing a counter, which can be confusing
We list the gaps honestly so you can decide if the trade-off is worth owning your data.
Tags
Claim this listing to keep it accurate, add a deploy template, or feature it on relevant pages.
Embed the LessPass difficulty badge in your README — it links back here.
[](https://openreplace.com/lesspass)Similar open-source projects
Other self-hostable tools in the same space worth comparing.
Lightweight Bitwarden-compatible server written in Rust, perfect for self-hosting
Open-source secrets management platform for developers and teams
Self-hosted authentication server with TOTP, WebAuthn, and SSO
Encrypt files in Git with KMS/age/PGP — secrets management without a server