The send functionality currently lacks additional security like forcing explicit send, and the ability to restrict domains you can send to. Send currently opens a data loss vector by being based on a link that is restricted on who has access to the link. This can be abused for exfiltration of sensitive documents through the functionality, and no auditing on who its sent to or accessed it.
In an enterprise account an admin should be able to force explicit send to an email, as well as define domains users can share passwords to. This should also show in audit logs to show the recipient of the send as well.
Ask:
Ability to force explicit send to email address
Ability to force Approved domains for Send
First, could you explain what you mean by “force explicit send”? (my guess would be a policy that the sender can’t obfuscate their email address?)
Second, I think you have two valid requests here (forcing explicit send and the ability to restrict domains you can send to). But we have a voting system (for feature requests) on the forum, that makes it necessary that feature requests are about one specific thing only. (otherwise, it’s not possible to interpret votes – and how should someone vote who would very much like feature A, but under no circumstances feature B?)
So, I’m going to close this request (with some delay for further clarification) and would encourage you to open two separate feature requests.
If you can not trust someone with a password don’t share it with them. There is no half-way. If you want them to be able to use it, they will have the ability to abuse it.
For example, instead of using send, the bad actor could copy/paste/drag the password into their outlook/gmail. And if filling web pages with autofill, the bad actor could inspect the web page after filling and before sending.
The way around this is to use device-bound passkeys (which Bitwarden does not support). Device-bound limits the bad actor to giving away the credential, but in the process, they lose access because they can not duplicate it.
I don’t have time right now to look up any info confirming this, but if I recall correctly, Bitwarden is in the process of developing a feature that would allow Send messages to be sent only to authorized recipients whose email addresses have been verified. Perhaps this would meet your needs, @JadeHughes?
