frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Passwords are okay, impulsive Internet isn't

https://www.dedoimedo.com/life/passwords-passkeys.html
3•brycewray•1y ago

Comments

palata•1y ago
Hmm... I see a rant against the state of software (bad software, AI diarrhea, ...) and TooBigTech having control over everything. I can agree with that, but it has nothing to do with the "passwords vs passkeys" question.

The rant against passkeys? I don't get it. Just like one can use a password manager controlled by TooBigTech or KeePass, one can use a passkey controlled by TooBigTech or a Yubikey. I find it great to authenticate directly with my Yubikey (over FIDO2) instead of using my Yubikey to decrypt a password and copying it in a form.

And then there is the part that is completely wrong about security. They say that they "can't trust their phone" so they don't want to keep the passkeys there. But that is not correct: if the passkeys are encrypted and the key is stored in a TPM, then that's effectively similar to having a security key (you have to trust the TPM, just as you have to trust the security key of course).

And then there is the nonsense:

> I can set up KeePass Portable on a USB key, run it in Linux via WINE, place it inside an encrypted VeraCrypt container, copy to any which file sharing service, if I want.

If the device where you enter the password is compromised, then the password will be compromised as soon as you enter it on that device. No matter how much you show off with your funny setup with WINE and VeraCrypt. A password manager doesn't protect against that, so passwords can be exfiltrated as they are used. Whereas a FIDO2 authentication requires the passkey every time. E.g. I need to physically touch my Yubikey for it to sign the challenge. It could be MitM, but it is visible ("I touched my Yubikey and it didn't work, what happened?").

Authenticating over FIDO2 with a security key is strictly superior to entering a password in a field, period.

Modern Harcker News (A Chrome extension to make Hacker News look moder)

https://chromewebstore.google.com/detail/modern-hacker-news/gkcajbhedfpgeaeeedhanlljgjbknadk
1•i3130002•1m ago•1 comments

Claude Code uses Bun written in Rust now

https://simonwillison.net/2026/Jul/19/claude-code-in-bun-in-rust/
1•tosh•2m ago•0 comments

AI coding agents should optimize for less owned code

https://www.openenergytransition.org/posts/ai-coding-agents-should-optimize-for-less-owned-code
1•lyoncy•2m ago•0 comments

Claude Code now uses the new (unreleased) version of Bun (in Rust)

https://twitter.com/simonw/status/2078692298301587758
1•tosh•3m ago•0 comments

Follow the money, especially in open source

https://www.osnews.com/story/145548/follow-the-money-especially-in-open-source/
2•jandeboevrie•4m ago•0 comments

Show HN: Inertia, Physics in a Terminal

https://inertia-web.github.io/
1•aclfe•4m ago•0 comments

Aging Baby Boomers are America's real labor problem, not AI

https://fortune.com/2026/07/18/us-labor-shortage-ai-baby-boomers-2032/
2•quick_brown_fox•9m ago•0 comments

Free, comprehensive SEO analysis of your website (no signup, 100 checks)

https://www.upstart.quest/en/free-seo-analysis
1•k0ngz1•18m ago•1 comments

Tape notes: looking back at the iconic C81 compilation

https://www.nme.com/features/music-features/c81-tape-notes-3773602
1•jjgreen•19m ago•0 comments

Comprehensive understanding of Beidou short message communication (2024)

https://www.skylabmodule.com/comprehensive-understanding-of-beidou-short-message-communication
2•dizhn•26m ago•0 comments

Async Python File IO Using Uring

https://github.com/meitham/urio
1•meitham•27m ago•0 comments

Using AI makes people less likely to admit they don't know something

https://www.theregister.com/ai-and-ml/2026/07/19/using-ai-makes-people-less-likely-to-admit-they-...
3•defrost•27m ago•0 comments

Systemd, 10 years later: a historical and technical retrospective (2020)

https://blog.darknedgy.net/technology/2020/05/02/0/
1•downbad_•31m ago•0 comments

The Architecture of Absolute Autonomy: Inside the SOBÈK Framework

https://github.com/MichaelBirara/sobek-framework
1•MichaelBirara•34m ago•0 comments

Open Geo skills for geospatial analysis

https://github.com/jaakla/open-gis
1•jaakl•38m ago•0 comments

Show HN: Zlvox – A no-signup suite of developer tools (JSON, Temp Mail, PDF)

https://zlvox.com/blog/why-i-stopped-using-random-online-ai-tools-2026
1•mraadikhokhar•41m ago•0 comments

A full offline voice agent in 1.2 GB of RAM on Android device with FunctionGemma

https://old.reddit.com/r/androiddev/comments/1v07clk/a_full_offline_voice_agent_in_12_gb_of_ram_s...
1•ipotapov•43m ago•0 comments

Design a Url Shortner

https://blog.danwald.me/design-a-url-shortner
1•danwald•46m ago•0 comments

Ask HN: USB-to-WiFi print server for old printers – do you want it?

3•ValdikSS•52m ago•0 comments

Reading Between the Dots: Decoding Hidden Computation Across Filler Tokens

https://arxiv.org/abs/2607.03502
1•user_7832•52m ago•2 comments

Linux Foundation Announces the Intent to Launch the Tokenomics Foundation

https://www.linuxfoundation.org/press/linux-foundation-announces-the-intent-to-launch-the-tokenom...
1•nlpnerd•53m ago•0 comments

Coding too fast to collaborate

https://chrisloy.dev/post/2026/07/19/coding-too-fast-to-collaborate
2•chrisloy•57m ago•0 comments

RedisME:The most user-friendly RDM in the world

https://www.hepengju.com/
1•hepengju•58m ago•0 comments

Node graphs suck for metrics and traces

https://play.mapgl.org
1•vaduga•1h ago•1 comments

Dumber Mini: A Nokia-Style Phone with WhatsApp and Maps

https://dumbermini.com/
2•thunderbong•1h ago•0 comments

Trump, not Iran, is the greatest danger

https://www.theguardian.com/commentisfree/2026/jul/18/donald-trump-iran-world-danger-bombing-us
7•0x54MUR41•1h ago•3 comments

Show HN: AI mock interview tool that scores your answers – free, no signup

https://interviewpracticeai.com
1•BenGallagh•1h ago•0 comments

An Interesting Number (2005)

https://www.cut-the-knot.org/blue/InterestingStory.shtml
1•wolfi1•1h ago•0 comments

South Korea wants the port of Busan to become a hub for polar shipping

https://asia.nikkei.com/spotlight/policy-asia/south-korea-s-lee-seeks-arctic-lift-for-country-s-s...
3•cromka•1h ago•0 comments

Qwen 3.8 Max Preview

https://www.qwencloud.com/pricing/token-plan
2•lebovic•1h ago•1 comments