frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Passwords are okay, impulsive Internet isn't

https://www.dedoimedo.com/life/passwords-passkeys.html
3•brycewray•1y ago

Comments

palata•1y ago
Hmm... I see a rant against the state of software (bad software, AI diarrhea, ...) and TooBigTech having control over everything. I can agree with that, but it has nothing to do with the "passwords vs passkeys" question.

The rant against passkeys? I don't get it. Just like one can use a password manager controlled by TooBigTech or KeePass, one can use a passkey controlled by TooBigTech or a Yubikey. I find it great to authenticate directly with my Yubikey (over FIDO2) instead of using my Yubikey to decrypt a password and copying it in a form.

And then there is the part that is completely wrong about security. They say that they "can't trust their phone" so they don't want to keep the passkeys there. But that is not correct: if the passkeys are encrypted and the key is stored in a TPM, then that's effectively similar to having a security key (you have to trust the TPM, just as you have to trust the security key of course).

And then there is the nonsense:

> I can set up KeePass Portable on a USB key, run it in Linux via WINE, place it inside an encrypted VeraCrypt container, copy to any which file sharing service, if I want.

If the device where you enter the password is compromised, then the password will be compromised as soon as you enter it on that device. No matter how much you show off with your funny setup with WINE and VeraCrypt. A password manager doesn't protect against that, so passwords can be exfiltrated as they are used. Whereas a FIDO2 authentication requires the passkey every time. E.g. I need to physically touch my Yubikey for it to sign the challenge. It could be MitM, but it is visible ("I touched my Yubikey and it didn't work, what happened?").

Authenticating over FIDO2 with a security key is strictly superior to entering a password in a field, period.

Atlassian wants developers to like Jira

https://thenewstack.io/atlassian-jira-coding-agents/
1•Brajeshwar•1m ago•0 comments

Washington Law Says to Alert the Public When Doctors Are Accused of Misconduct

https://www.propublica.org/article/washington-doctor-misconduct-failed-disclosure
2•Jimmc414•1m ago•0 comments

Orram: An OpenROAD-Integrated RAM Generator Using Standard Cells

https://arxiv.org/abs/2607.12244
1•Jimmc414•2m ago•0 comments

Young adults are poor despite every metric which suggests otherwise

https://becomingnoble.substack.com/p/young-adults-are-poor-despite-every
1•takoid•2m ago•0 comments

CD Sales Growth Outpaced Vinyl in the First Half of 2026

https://consequence.net/2026/07/the-cd-revival-is-getting-hard-to-ignore/
1•speckx•5m ago•0 comments

The causal influence of brain size on human intelligence (2019)

https://pmc.ncbi.nlm.nih.gov/articles/PMC7440690/
1•measurablefunc•5m ago•0 comments

Mesh Gradient Editor

https://colorflow.ls.graphics/
1•marvel_boy•6m ago•1 comments

Show HN: APIWatermark – Automation Tool for Image, Video and PDF Watermarking

https://apiwatermark.com
1•ryant123•6m ago•0 comments

Show HN: WordRank: A Word Frequency Game

https://timd73.github.io/word-rank/
1•edan•8m ago•0 comments

Show HN: Latch – Lightweight hybrid post-quantum proxy (X25519M-KEM-768)

https://github.com/itsVentie/Latch
1•ventie•11m ago•0 comments

42% of adults rely on their parents for financial support

https://www.cnbc.com/2026/07/16/42percent-of-adults-rely-on-their-parents-for-financial-supportth...
3•root-parent•12m ago•0 comments

I built a Mac app that turns native-language drafts into natural English

https://www.echoo.ai/
1•mike-el•15m ago•1 comments

The Growing Compute Shortage

https://www.apollo.com/wealth/insights-news/insights/2026/06/growing-compute-shortage
1•dmitriy_ko•15m ago•0 comments

Harnessing Harnesses

https://blog.zsec.uk/harnessing-harnesses/
1•wslh•17m ago•0 comments

The Mind-Bending Company That Gets a Million Job Applications–and Rejects 99.9%

https://www.wsj.com/business/bending-spoons-jobs-hiring-stock-eaed2b8e
2•simonebrunozzi•17m ago•0 comments

Bokal – An open-source cookie editor that asks for no host permissions up front

https://bokal.dev
1•bolalapp•19m ago•0 comments

ChatGPT Has Merch

https://openai.com/supply/shop/
2•mrmarket•19m ago•2 comments

Should I Use an Agent?

https://shouldiuseanagent.com/
1•gregsadetsky•20m ago•0 comments

California Steps Back From Dangerous Expansion of its Age-Gating Law

https://www.eff.org/deeplinks/2026/07/california-steps-back-dangerous-expansion-its-age-gating-law
1•Brajeshwar•21m ago•0 comments

Reverse Engineering the Firmware of an MP3 Player with LLMs

https://im.not.ci/echo-mini-rse/
1•uneven9434•22m ago•0 comments

Chinese filing implies DeepSeek valuation of around $52B

https://www.reuters.com/world/asia-pacific/chinese-filing-implies-deepseek-valuation-around-52-bi...
1•01-_-•22m ago•0 comments

Energy IPOs surge as investors hunt for ways to play AI boom

https://arstechnica.com/information-technology/2026/07/energy-ipos-surge-as-investors-hunt-for-wa...
2•joozio•23m ago•0 comments

Anthropic CEO gives $1M to super PAC amid battle of AI big-money groups

https://www.politico.com/news/2026/07/16/anthropics-ceo-gives-1-million-to-super-pac-amid-feud-of...
3•01-_-•23m ago•0 comments

Why Domain-Driven Design Is a Great Fit for Coding with Claude

https://menelaos.vergis.net/posts/Why-Domain-Driven-Design-Is-a-Great-Fit-for-Coding-with-Claude
1•melenaos•23m ago•0 comments

The Bug Bounty Singularity: Our Hackbot

https://josephthacker.com/hacking/2026/07/01/we-built-a-hackbot.html
1•wslh•23m ago•0 comments

VarAlign – catch the duplicate variables AI agents scatter across sessions

https://github.com/greenyogainc/varalign
1•andreab67•24m ago•0 comments

Village in UK Successful Succession Vote

https://en.wikipedia.org/wiki/Piddington,_Oxfordshire
1•Eaglo•24m ago•2 comments

Show HN: Embusa, a malware analysis team at your fingertips

https://www.embusa.ai
2•gxenos95•25m ago•0 comments

We Rebuilt Screpy

https://screpy.substack.com/p/we-rebuilt-screpy-take-another-look
1•criexe•25m ago•0 comments

Hearts and Minds: An Ambivalent Review of "Project Hail Mary"

https://www.rifters.com/crawl/?p=11659
2•leephillips•27m ago•0 comments