frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Passwords are okay, impulsive Internet isn't

https://www.dedoimedo.com/life/passwords-passkeys.html
3•brycewray•1y ago

Comments

palata•1y ago
Hmm... I see a rant against the state of software (bad software, AI diarrhea, ...) and TooBigTech having control over everything. I can agree with that, but it has nothing to do with the "passwords vs passkeys" question.

The rant against passkeys? I don't get it. Just like one can use a password manager controlled by TooBigTech or KeePass, one can use a passkey controlled by TooBigTech or a Yubikey. I find it great to authenticate directly with my Yubikey (over FIDO2) instead of using my Yubikey to decrypt a password and copying it in a form.

And then there is the part that is completely wrong about security. They say that they "can't trust their phone" so they don't want to keep the passkeys there. But that is not correct: if the passkeys are encrypted and the key is stored in a TPM, then that's effectively similar to having a security key (you have to trust the TPM, just as you have to trust the security key of course).

And then there is the nonsense:

> I can set up KeePass Portable on a USB key, run it in Linux via WINE, place it inside an encrypted VeraCrypt container, copy to any which file sharing service, if I want.

If the device where you enter the password is compromised, then the password will be compromised as soon as you enter it on that device. No matter how much you show off with your funny setup with WINE and VeraCrypt. A password manager doesn't protect against that, so passwords can be exfiltrated as they are used. Whereas a FIDO2 authentication requires the passkey every time. E.g. I need to physically touch my Yubikey for it to sign the challenge. It could be MitM, but it is visible ("I touched my Yubikey and it didn't work, what happened?").

Authenticating over FIDO2 with a security key is strictly superior to entering a password in a field, period.

Behind the scenes: watching media on the browser (2021)

https://asyncimpulse.com/behind-the-scenes-watching-media-on-the-browser/
1•csmantle•40s ago•0 comments

External Commentary on LLM Global Workspace Representations [pdf]

https://www-cdn.anthropic.com/files/4zrzovbb/website/cc4be2488d65e54a6ed06492f8968398ddc18ebe.pdf
1•allenleee•45s ago•0 comments

US oil firms sign deals with Iraq to develop alternative shipping routes

https://apnews.com/article/oil-iraq-pipeline-deal-582b42f21cb62cfe8dc6c8e73d1dcafa
1•geox•2m ago•0 comments

Show HN: Yapp.page, publish a webpage from a Claude or ChatGPT chat

https://yapp.page/
1•hpko•8m ago•0 comments

The Sandpaper Cover of the Return of the Durutti Column (2014)

https://daily.redbullmusicacademy.com/2014/04/return-of-the-durutti-column-feature/
2•ravetcofx•10m ago•0 comments

Find What SaaS Tools Competitors Use via Sub-Processors

https://ashishb.net/tech/sub-processors-leak-saas-stack/
3•ashishb•18m ago•0 comments

How Reddit Detects Ban Evasion – and Why a New Account Isn't Enough

https://medium.com/@thesuperrepemail/how-reddit-detects-ban-evasion-and-why-a-new-account-isnt-en...
3•rajsuper123•20m ago•0 comments

DOSBox on OpenVMS (Alpha CPU)

https://astr0baby.online/AXP/OpenVMS/DOSBOX/
1•jandeboevrie•23m ago•0 comments

Vörwatch: The VPS Monitoring Tool

https://medium.com/@vektormemory/v%C3%B6rwatch-the-vps-monitoring-tool-we-built-because-we-needed...
1•vektormemory•23m ago•0 comments

Show HN: Free image tools that never upload your files

https://pixoratools.dev/
1•umarratra•27m ago•0 comments

A search for life on Earth (1993) [pdf]

https://gwern.net/doc/science/physics/astronomy/1993-sagan.pdf
1•mimorigasaka•29m ago•0 comments

AI Mania Is Eviscerating Global Decisionmaking

https://hermit-tech.com/blog/ai-mania-is-eviscerating-global-decisionmaking
1•olalonde•30m ago•0 comments

Ask HN: I've told everyone about my startup and its been harder than I thought

2•bunnybomb2•38m ago•2 comments

San Francisco orders Apple, Google to remove nudify apps from app stores

https://arstechnica.com/tech-policy/2026/07/apple-google-must-stop-profiting-off-ai-nudify-apps-s...
1•rbanffy•40m ago•0 comments

Not Holding Back the Ocean

https://ethanniser.dev/blog/not-holding-back-the-ocean/
1•tosh•45m ago•0 comments

There's a lot of hype around perimenopause. Don't buy it

https://www.technologyreview.com/2026/07/17/1140608/theres-a-lot-of-hype-around-perimenopause-don...
1•joozio•49m ago•0 comments

LLM Cliché Highlighter

https://tools.simonwillison.net/llm-cliche-highlighter
1•m_c•1h ago•0 comments

Can humans hibernate their way to Mars?

https://www.theguardian.com/science/ng-interactive/2026/jul/14/human-hibernation-space-mars
2•tosh•1h ago•0 comments

Agentic AI Is Taking over Execution, Not Just Content Generation

https://themarketingnewsletter.org/p/45-agentic-ai-is-taking-over-execution
1•thenewedrock•1h ago•2 comments

AI and Creativity

https://sunnyamrat.com/posts/2026-07-17-ai-creativity/
1•sunnyam•1h ago•0 comments

What Doom taught us about AI-assisted incident response

https://rootly.com/blog/what-doom-taught-us-about-ai-assisted-incident-response
1•DaWe01•1h ago•0 comments

Teamclaude rewrite in rust, run multiple Claude accounts in parllel

https://github.com/dhkts1/teamclaude-rs
1•dhkts1•1h ago•0 comments

Show HN: Find someone in the dark – light them or light yourself? (Three.js)

https://github.com/skorotkiewicz/signal-in-the-dark
3•modinfo•1h ago•0 comments

The Day I Accidentally Deleted Production

https://arpitbhayani.me/blogs/deleted-production/
2•dubeysatyam•1h ago•0 comments

Maze Bench

https://mazebench.com/
2•tosh•1h ago•0 comments

What Happened to Novell NetWare? Why the King of the Network Disappeared

https://www.youtube.com/watch?v=3NNbj1NoePI
2•cable2600•1h ago•0 comments

AgentGrove – local workspace for AI coding agents in Git worktrees

https://github.com/arnabk/agentgrove
2•arnabk•1h ago•0 comments

Labelled multi-dimensional arrays for representing research data

https://www.djmannion.net/data_nd/index.html
2•zetamax•1h ago•0 comments

I built a tool to prove a human reviewed an AI decision

https://caneni.net/
1•mbugay•1h ago•0 comments

Vice President Mispells « potato » (1992)

https://en.wikipedia.org/wiki/Dan_Quayle
1•jackhalford•1h ago•1 comments