frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Passwords are okay, impulsive Internet isn't

https://www.dedoimedo.com/life/passwords-passkeys.html
3•brycewray•1y ago

Comments

palata•1y ago
Hmm... I see a rant against the state of software (bad software, AI diarrhea, ...) and TooBigTech having control over everything. I can agree with that, but it has nothing to do with the "passwords vs passkeys" question.

The rant against passkeys? I don't get it. Just like one can use a password manager controlled by TooBigTech or KeePass, one can use a passkey controlled by TooBigTech or a Yubikey. I find it great to authenticate directly with my Yubikey (over FIDO2) instead of using my Yubikey to decrypt a password and copying it in a form.

And then there is the part that is completely wrong about security. They say that they "can't trust their phone" so they don't want to keep the passkeys there. But that is not correct: if the passkeys are encrypted and the key is stored in a TPM, then that's effectively similar to having a security key (you have to trust the TPM, just as you have to trust the security key of course).

And then there is the nonsense:

> I can set up KeePass Portable on a USB key, run it in Linux via WINE, place it inside an encrypted VeraCrypt container, copy to any which file sharing service, if I want.

If the device where you enter the password is compromised, then the password will be compromised as soon as you enter it on that device. No matter how much you show off with your funny setup with WINE and VeraCrypt. A password manager doesn't protect against that, so passwords can be exfiltrated as they are used. Whereas a FIDO2 authentication requires the passkey every time. E.g. I need to physically touch my Yubikey for it to sign the challenge. It could be MitM, but it is visible ("I touched my Yubikey and it didn't work, what happened?").

Authenticating over FIDO2 with a security key is strictly superior to entering a password in a field, period.

Show HN: I built an AI spritesheet generator for game developers

https://www.autosprite.io
1•autosprite•2m ago•0 comments

Desk-Pet – a local-first desktop pet powered by MiniCPM5

https://github.com/OpenBMB/MiniCPM-Desk-Pet
1•modinfo•2m ago•0 comments

Roast My New Creation

https://itsrilo.com
1•GeorgeChaplin•2m ago•1 comments

Torpenhow Hill

https://en.wikipedia.org/wiki/Torpenhow_Hill
1•nmstoker•3m ago•0 comments

Redis Patterns for Coding Agents

https://redis.antirez.com/
1•Jimmc414•4m ago•0 comments

GAO: DOE Is Prematurely Excluding Less Expensive Options for Nuclear Cleanup

https://www.gao.gov/products/gao-26-108193
2•Jimmc414•4m ago•0 comments

InfoWars: Emergency with Tim Heidecker [video]

https://www.youtube.com/watch?v=RX8-VGDK1vQ
2•embedding-shape•7m ago•0 comments

AI Giants Are Handing Out Tons of Free Computing Power to Grab Startup Share

https://www.wsj.com/tech/ai/ai-giants-are-handing-out-tons-of-free-computing-power-to-grab-startu...
2•Jimmc414•8m ago•0 comments

Activity-frames – give your AI agent eyes on your day

https://github.com/nossa-y/activity-frames
1•nossa-y•9m ago•0 comments

Closing the Verification Loop

https://thinkroom.kieranklaassen.com/d/njrS5TJhis
1•gmays•12m ago•0 comments

Microsoft 365 Copilot adoption is under 4.5%, only 1% use it weekly

https://www.windowslatest.com/2026/07/07/microsoft-365-copilot-adoption-is-under-4-5-after-3-year...
4•pier25•17m ago•4 comments

Implementing Standard.site on a Nonstandard Site

https://www.coryd.dev/posts/2026/implementing-standardsite-on-a-nonstandard-site
1•cdrnsf•21m ago•0 comments

JPMorgan, BofA and Others Explore Buying Card Network to Raise Debit-Card Fees

https://www.wsj.com/finance/banking/jpmorgan-bank-of-america-and-other-banks-explore-a-deal-to-sh...
4•JumpCrisscross•24m ago•3 comments

AI tool got me 12,000 new clicks from Google

https://twitter.com/fba/status/2074541708218351872
1•fba0•26m ago•2 comments

SpaceX Shares Stumble in Nasdaq-100 Debut

https://www.wsj.com/finance/stocks/spacex-shares-stumble-in-nasdaq-100-debut-9ec10565
7•JumpCrisscross•27m ago•0 comments

More Americans Are Moving Away from Flood Risk Than Toward It

https://www.bloomberg.com/news/articles/2026-06-24/flood-prone-us-counties-lose-residents-as-risk...
4•petethomas•29m ago•1 comments

The Case for Service-to-Service GraphQL

https://blog.larah.me/service-to-service-graphql/
2•markl42•30m ago•0 comments

Yggdrasil Agent: general purpose, parallel and adaptive reasoning depth

https://yggdrasilagent.com/
2•grasant•33m ago•0 comments

Show HN: OCR Buddy: local browser OCR for code, formulas (LaTeX) and tables

https://github.com/Fanfulla/OCR-buddy
2•Fanfulla•33m ago•0 comments

ASRock Rack Had One of the First Arm AGI Servers at Computex 2026 – ServeTheHome

https://www.servethehome.com/asrock-rack-had-one-of-the-first-arm-agi-servers-at-computex-2026/
5•rbanffy•37m ago•0 comments

Chinese AI models are gaining ground with U.S. companies as costs surge

https://www.cnbc.com/2026/07/07/chinese-ai-models-costs-us-openai-anthropic.html
5•herbertl•39m ago•0 comments

Show HN: Workflowy but Open Source

https://twitter.com/CameronPak/status/2074262605779124317
2•campak•42m ago•1 comments

Meta accused of discriminating against non-Chinese workers in latest layoff

https://old.reddit.com/r/cscareerquestions/comments/1uq4a92/meta_accused_of_discriminating_agains...
6•PieUser•42m ago•1 comments

IBM Expands Z17 and LinuxONE 5 Mainframe Lineups with Single Frame and Rackmount

https://www.servethehome.com/ibm-expands-z17-and-linuxone-5-mainframe-lineups-with-single-frame-a...
2•rbanffy•46m ago•0 comments

Choosing a Claude model and effort level in Claude Code

https://claude.com/blog/claude-model-and-effort-level-in-claude-code
4•geoffbp•48m ago•0 comments

Rumik: Voice AI

https://rumik.ai/
2•handfuloflight•48m ago•1 comments

On-call Engineer 2026 by Kai Lentit [YouTube]

https://www.youtube.com/watch?v=sY1UqUuBqQQ
2•thinkmassive•48m ago•0 comments

Chinese memory and storage firm expected to more than 60k% jump in profits

https://www.tomshardware.com/tech-industry/chinese-memory-and-storage-firm-expected-to-post-more-...
3•rbanffy•50m ago•0 comments

I coded a shoot 'em up alone at 18 after learning Lua in a single week

2•DamixLord•51m ago•1 comments

Show HN: Backlog – tasks and contexts manager for AI coding agents

https://github.com/mazen160/backlog
3•mazen160•58m ago•0 comments