frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Passwords are okay, impulsive Internet isn't

https://www.dedoimedo.com/life/passwords-passkeys.html
3•brycewray•1y ago

Comments

palata•1y ago
Hmm... I see a rant against the state of software (bad software, AI diarrhea, ...) and TooBigTech having control over everything. I can agree with that, but it has nothing to do with the "passwords vs passkeys" question.

The rant against passkeys? I don't get it. Just like one can use a password manager controlled by TooBigTech or KeePass, one can use a passkey controlled by TooBigTech or a Yubikey. I find it great to authenticate directly with my Yubikey (over FIDO2) instead of using my Yubikey to decrypt a password and copying it in a form.

And then there is the part that is completely wrong about security. They say that they "can't trust their phone" so they don't want to keep the passkeys there. But that is not correct: if the passkeys are encrypted and the key is stored in a TPM, then that's effectively similar to having a security key (you have to trust the TPM, just as you have to trust the security key of course).

And then there is the nonsense:

> I can set up KeePass Portable on a USB key, run it in Linux via WINE, place it inside an encrypted VeraCrypt container, copy to any which file sharing service, if I want.

If the device where you enter the password is compromised, then the password will be compromised as soon as you enter it on that device. No matter how much you show off with your funny setup with WINE and VeraCrypt. A password manager doesn't protect against that, so passwords can be exfiltrated as they are used. Whereas a FIDO2 authentication requires the passkey every time. E.g. I need to physically touch my Yubikey for it to sign the challenge. It could be MitM, but it is visible ("I touched my Yubikey and it didn't work, what happened?").

Authenticating over FIDO2 with a security key is strictly superior to entering a password in a field, period.

Deepagents

https://github.com/langchain-ai/deepagents
1•kristianpaul•4m ago•1 comments

AI dev platform that keeps project context across the whole codebase lifecycle

https://brunelly.com/
1•RihabAI•10m ago•0 comments

Using 'claude -p' for running Mr.Jassy - AWS butler agent

1•anoop_kumar•12m ago•0 comments

Wasmer: Fast, secure, lightweight containers based on WebAssembly

https://wasmer.io/
2•handfuloflight•15m ago•0 comments

BYD Denza Z steer-by-wire

https://carnewschina.com/2026/07/01/byd-denza-z-steer-by-wire-fudi-chassis/
2•Alien1Being•18m ago•0 comments

Google used its Android phone network's accelerometers as mini-seismometers

https://substack.com/@jklundblad/note/c-285567479
1•initramfs•20m ago•0 comments

From Open Source Software to Open Source Strategy

https://p3institute.substack.com/p/from-open-source-software-to-open
2•cletusigwe•21m ago•0 comments

The Free Market Lie: Why Switzerland Has 25 Gbit Internet and America Doesn't

https://stefan.schueller.net/posts/the-free-market-lie/
46•talonx•21m ago•13 comments

How to avoid AI in as many places as possible

https://www.fastcompany.com/91566861/how-to-avoid-ai-in-as-many-places-as-possible
1•1vuio0pswjnm7•27m ago•0 comments

Show HN: Bedtimeforkids let kids learn while entertain

https://bedtimeforkids.vercel.app
1•dutay05•30m ago•0 comments

Ua-tracer: what does a user agent fetch, follow and run

https://uatracer.com/
1•twapi•31m ago•0 comments

Every AI Visibility Tool Is Lying to You

https://canonry.ai/blog/ai-visibility-tools-are-lying
1•arberx•32m ago•0 comments

Google loses fight against record €4.1B EU antitrust fine

https://www.reuters.com/world/eu-top-court-dismisses-google-fight-against-record-41-billion-eu-an...
2•1vuio0pswjnm7•33m ago•0 comments

What Would Mark Twain Think of America at 250?

https://www.theatlantic.com/ideas/2026/07/mark-twain-america-anniversary-critique/687718/
1•paulpauper•40m ago•0 comments

Why Everyone Is Suddenly Talking About 'Universal Basic Capital'

https://www.theatlantic.com/economy/2026/07/universal-basic-capital-ai/687759/
3•paulpauper•40m ago•0 comments

Merlin: A computed tomography vision–language foundation model and dataset

https://www.nature.com/articles/s41586-026-10181-8
1•bryanrasmussen•40m ago•0 comments

Show HN: I built a declarative layout engine for SVG, Canvas, WebGL

https://github.com/carnworkstudios/boxwood
2•bonzai2carn•43m ago•0 comments

Artificial and Fake Eggs: Dance of Death

https://www.researchgate.net/publication/281149909_Artificial_and_Fake_Eggs_Dance_of_Death
1•ms7892•46m ago•0 comments

The Programming Wars: How Microsoft Crushed Borland

https://www.youtube.com/watch?v=AQiULz4Z4TQ
1•cable2600•47m ago•0 comments

14× faster embeddings: how we rebuilt the ONNX path in Manticore

https://manticoresearch.com/blog/onnx-embeddings-speedup/
2•snikolaev•48m ago•0 comments

DGX station and "frontier" models, my hunt for answers

https://www.atcyrus.com/stories/dgx-station-local-frontier-ai-memory
1•connorturland•49m ago•1 comments

Surge will do marketing for you

https://www.surgeos.app/
1•yernururu•51m ago•0 comments

How the Big Four's wheels fell off Down Under

https://www.ft.com/content/f0f852ef-637e-4be7-8eee-e3ad2b767cf4
1•petethomas•51m ago•0 comments

June heatwave may have killed around 20k people in Europe

https://www.newscientist.com/article/2532825-june-heatwave-may-have-killed-around-20000-people-in...
5•littlexsparkee•1h ago•1 comments

Show HN: Dabs spawns dumb agents in boxes for free

https://github.com/jjmerino/dabs
1•jjmerino•1h ago•0 comments

BitTorrent's disastrous, legendary, and controversial story

https://www.theverge.com/tech/959848/bittorrent-story-25-years-piracy
1•aarvin_roshin•1h ago•1 comments

In Defense of AI Mandates

https://charity.wtf/2026/07/02/in-defense-of-ai-mandates-xpost/
1•backlit4034•1h ago•0 comments

Show HN: Imagent – agentic image/video/speech generation

https://github.com/unliftedq/imagent
2•unliftedq•1h ago•0 comments

Spotify deletes streams of chart-topping song after suspicious Kalshi bets

https://www.ft.com/content/2e10851c-9f47-410d-b46e-2a617118b05a
2•thm•1h ago•0 comments

Qwicut – A Desktop App to Turn Any Selection into Intelligence

https://www.qwicut.com
1•yukidkwlbn•1h ago•0 comments