frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Passwords are okay, impulsive Internet isn't

https://www.dedoimedo.com/life/passwords-passkeys.html
3•brycewray•1y ago

Comments

palata•1y ago
Hmm... I see a rant against the state of software (bad software, AI diarrhea, ...) and TooBigTech having control over everything. I can agree with that, but it has nothing to do with the "passwords vs passkeys" question.

The rant against passkeys? I don't get it. Just like one can use a password manager controlled by TooBigTech or KeePass, one can use a passkey controlled by TooBigTech or a Yubikey. I find it great to authenticate directly with my Yubikey (over FIDO2) instead of using my Yubikey to decrypt a password and copying it in a form.

And then there is the part that is completely wrong about security. They say that they "can't trust their phone" so they don't want to keep the passkeys there. But that is not correct: if the passkeys are encrypted and the key is stored in a TPM, then that's effectively similar to having a security key (you have to trust the TPM, just as you have to trust the security key of course).

And then there is the nonsense:

> I can set up KeePass Portable on a USB key, run it in Linux via WINE, place it inside an encrypted VeraCrypt container, copy to any which file sharing service, if I want.

If the device where you enter the password is compromised, then the password will be compromised as soon as you enter it on that device. No matter how much you show off with your funny setup with WINE and VeraCrypt. A password manager doesn't protect against that, so passwords can be exfiltrated as they are used. Whereas a FIDO2 authentication requires the passkey every time. E.g. I need to physically touch my Yubikey for it to sign the challenge. It could be MitM, but it is visible ("I touched my Yubikey and it didn't work, what happened?").

Authenticating over FIDO2 with a security key is strictly superior to entering a password in a field, period.

Never ask a model to do something a deterministic system can do reliably

https://cacm.acm.org/blogcacm/what-platform-security-taught-me-about-trusting-llm-agents/
1•visha1v•1m ago•0 comments

The EU Wants Its Own Tech Supply Chain

https://spectrum.ieee.org/europe-tech-sovereignty-package
1•sscaryterry•1m ago•0 comments

Show HN: iOS-style "select text on any image" OCR for de-googled Android

https://github.com/notune/TextGrab
1•leumon•2m ago•0 comments

Show HN: Formo – Analytics and attribution for onchain apps

https://formo.so/
1•leventhan•2m ago•0 comments

Is Recursive Self-Improvement Here?

https://cacm.acm.org/news/is-recursive-self-improvement-really-here/
1•visha1v•2m ago•1 comments

I made a TUI web browser with its own layout engine

1•keepamovin•4m ago•0 comments

OmniConvert – The File Workbench

https://10convert.pages.dev/
1•rrrpro123•6m ago•1 comments

Samsung profits jump 1,800% as AI chip sales soar

https://www.bbc.com/news/articles/c1kyy8yrpxdo
4•nnurmanov•11m ago•1 comments

SB mini II: a homebrew Apple II clone

https://unimplementedtrap.com/sb-mini-ii-apple-ii-clone/
1•freediver•11m ago•0 comments

Building a High-Performance C++ Backtesting Framework with Order Simulator

https://medium.com/@DolphinDB_Inc/building-a-high-performance-c-backtesting-framework-with-an-ord...
1•yiweileng•12m ago•0 comments

Voice Is My New Keyboard

https://sanju.sh/wisprflow/
1•freediver•13m ago•0 comments

Thoughts on AI

https://rkoziel.com/thoughts/2026-06-29--19-02-29/
1•freediver•16m ago•0 comments

Google's exponential path to climate-wrecking digital bloat

https://ketanjoshi.co/2026/07/01/googles-exponential-path-to-climate-wrecking-digital-bloat/
2•mapleoin•16m ago•0 comments

ReactOS "Open-Source Windows" Project Now Capable of Running Half-Life 2

https://www.phoronix.com/news/Half-Life-2-ReactOS
3•birdculture•16m ago•0 comments

Would you use a tool that finds repeated pain points before you build?

https://foundrly-early.netlify.app
1•GagnoGabin•17m ago•0 comments

Show HN: A Haskell programmable-CAD environment, in the browser with WASM

https://doscienceto.it/waterpark/
3•hungryjoewarren•19m ago•0 comments

Show HN: Deceptive.design – dark pattern types, laws and cases (rebuilt)

https://deceptive.design/
1•harrybr•21m ago•0 comments

Latent Programming Horizons in Coding Agents

https://arxiv.org/abs/2607.05188
2•andre15silva•21m ago•0 comments

Hard time deciding? Let nuclear 8 ball help you

https://radmon.thealch3m1st.com/?view=ball&ext=spec
1•thealch3m1st•22m ago•1 comments

Wanna Hear Particles?

https://radmon.thealch3m1st.com/?view=wf&zoom=300000&audio=count
1•thealch3m1st•24m ago•1 comments

GL.iNet Flint 4 Announced

https://www.gl-inet.com/en-gb/products/gl-be14000
1•prima-facie•24m ago•1 comments

Elon Musk's SpaceX is about to trigger a $4.3B buying frenzy

https://www.independent.co.uk/us/money/spacex-nasdaq-elon-musk-b3010301.html
1•enlightpixel•27m ago•0 comments

Talk and Modify Wikipedia in Realtime

https://codingbutler.webfuse.com/
1•Salomeko•28m ago•1 comments

The Kernelized Secure Operating System KSOS [pdf]

https://www.usenix.org/system/files/login/articles/1255-perrine.pdf
1•Alien1Being•28m ago•0 comments

Portable Speaker Ranking (2026)

https://www.speakerranking.com/portable/party/
1•larodi•28m ago•1 comments

Show HN: A calculator CLI to help your agents perform calculations accurately

https://github.com/freakynit/llm-calc
1•freakynit•28m ago•0 comments

Raghu // dark-factory – press any key or click to power on

https://raghunathnair1-rgb.github.io
2•melvinroest•28m ago•0 comments

Show HN: Flag Click – Country Clicker Game

https://flagclick.com/
1•kyrylo•29m ago•1 comments

Hy3 – 295B MoE model (21B active, 192 experts)

https://twitter.com/TencentHunyuan/status/2074148098876768478
1•nezhar•30m ago•1 comments

Agent Box

https://agent-box.sh/
1•handfuloflight•33m ago•0 comments