frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Passwords are okay, impulsive Internet isn't

https://www.dedoimedo.com/life/passwords-passkeys.html
3•brycewray•1y ago

Comments

palata•1y ago
Hmm... I see a rant against the state of software (bad software, AI diarrhea, ...) and TooBigTech having control over everything. I can agree with that, but it has nothing to do with the "passwords vs passkeys" question.

The rant against passkeys? I don't get it. Just like one can use a password manager controlled by TooBigTech or KeePass, one can use a passkey controlled by TooBigTech or a Yubikey. I find it great to authenticate directly with my Yubikey (over FIDO2) instead of using my Yubikey to decrypt a password and copying it in a form.

And then there is the part that is completely wrong about security. They say that they "can't trust their phone" so they don't want to keep the passkeys there. But that is not correct: if the passkeys are encrypted and the key is stored in a TPM, then that's effectively similar to having a security key (you have to trust the TPM, just as you have to trust the security key of course).

And then there is the nonsense:

> I can set up KeePass Portable on a USB key, run it in Linux via WINE, place it inside an encrypted VeraCrypt container, copy to any which file sharing service, if I want.

If the device where you enter the password is compromised, then the password will be compromised as soon as you enter it on that device. No matter how much you show off with your funny setup with WINE and VeraCrypt. A password manager doesn't protect against that, so passwords can be exfiltrated as they are used. Whereas a FIDO2 authentication requires the passkey every time. E.g. I need to physically touch my Yubikey for it to sign the challenge. It could be MitM, but it is visible ("I touched my Yubikey and it didn't work, what happened?").

Authenticating over FIDO2 with a security key is strictly superior to entering a password in a field, period.

When Good Logging Takes Down Your Whole System

https://theforensicengineer.substack.com/p/when-good-logging-takes-down-your
1•backlit4034•57s ago•0 comments

AI and Job Postings: From Destruction to Creation?

https://www.hiringlab.org/2026/07/08/ai-and-job-postings-from-destruction-to-creation/
1•john_cogs•57s ago•1 comments

Show HN: Built a Spell Check for Compliance

https://www.scrutora.com
2•vimaldwivedi86•2m ago•0 comments

Former Intel employee sues over firing, saying disability prevented him from RTO

https://www.oregonlive.com/silicon-forest/2026/07/former-intel-employee-sues-over-his-layoff-he-s...
2•theanonymousone•2m ago•0 comments

Multiview Stereo Projection [video]

https://www.youtube.com/watch?v=YbxsYhTjYFI
1•surprisetalk•2m ago•0 comments

Show HN: SoulOS–State&persona management for agents without giving up your LLM

https://mziqudhd92.github.io/soul-os/
1•ls1911•3m ago•2 comments

First Impressions of Claude Fable

https://philipotoole.com/first-impressions-of-claude-fable/
1•speckx•3m ago•0 comments

Urn in Aadhaar: Meaning, Benefits, Process and Key Details – SMFG India Credit

https://www.smfgindiacredit.com/knowledge-center/what-is-urn-in-aadhar.aspx
1•saumyaraut11•5m ago•0 comments

How to Achieve Pruning When Querying by Non-Partitioned Columns in PostgreSQL

https://hakibenita.com/postgresql-partition-pruning
1•theanonymousone•5m ago•0 comments

Neural mechanisms of credit assignment for inferred relationships (2022)

https://www.cell.com/neuron/fulltext/S0896-6273(22)00462-7
1•ike_usawa•6m ago•0 comments

I added Souls-like comments to my blog

https://davidguerrero.fr/blog/souls-like-comments/
1•davguerrero•6m ago•0 comments

Show HN: An app that turns skipped coffees into an honest investment projection

https://worthithabits.com/
1•nat_startup•7m ago•0 comments

Show HN: I Built a Player to Turn Any Video into Real-Time ASCII Art

https://techoreon.github.io/verpad/asclii.html
1•guptalog•8m ago•0 comments

Mythos 5 offered outside the US by Anthropic

https://news.sky.com/video/mythos-5-offered-outside-the-us-by-anthropic-13561860
1•austinallegro•8m ago•0 comments

Show HN: I reverse-engineered LinkedIn's SDUI update that broke auto-apply

https://jobeasyapply.com
1•Maazkhanxo•8m ago•0 comments

Is it ethical to use AI?

https://charity.wtf/p/make-ai-boring-again
1•mooreds•8m ago•0 comments

Viability of Local Models for Coding

https://martinfowler.com/articles/exploring-gen-ai/local-models-for-coding-factors.html
1•mooreds•10m ago•0 comments

Show HN: QX Labs – build agents, flows and grids that work across your tools

https://www.qxlabs.com
1•hackfather•10m ago•1 comments

Briar Is in Maintenance Mode

https://briarproject.org/news/2026-maintenance-mode/
1•Vinnl•11m ago•0 comments

A chapter a day: Association of book reading with longevity

https://www.sciencedirect.com/science/article/abs/pii/S0277953616303689?_bhlid=bbc1a3e1d5a98a2322...
1•RickJWagner•11m ago•0 comments

Codex Responses regression: reasoning summaries now return <!-- --> bodies

1•_bobm•13m ago•0 comments

Show HN: WhisperShortcut – voice layer for AI on macOS (BYOK, offline Whisper)

https://github.com/mgsgde/whisper-shortcut
1•mgsgde•13m ago•0 comments

Bypassing the hyperscaler AI PaaS tax with a Rust orchestration plane

https://github.com/ss-forge/public-shares
1•csomaratne•14m ago•0 comments

Ask HN: I hate coding agents. Is this skill issue?

2•cmar00•15m ago•0 comments

Show HN: I built a video editor that edits itself

https://www.kadrix.io/
1•fognitix•16m ago•0 comments

Meta to build C$13B Alberta data center, its first in Canada

https://www.reuters.com/world/americas/meta-build-c13-billion-alberta-data-center-its-first-canad...
2•adithyaharish•17m ago•0 comments

LLM-as-a-Verifier: A General-Purpose Verification Framework

https://arxiv.org/abs/2607.05391
1•Anon84•18m ago•0 comments

Show HN: Paralino – E2E encrypted and private Life360 alternative

https://github.com/paralino/paralino
2•Zelimir_Bosnjak•19m ago•0 comments

Meta Is Toying with the Idea of Smart Glasses That Record All the Time

https://gizmodo.com/meta-is-toying-with-the-idea-of-smart-glasses-that-record-everything-all-the-...
1•alex_suzuki•21m ago•1 comments

V2 of Holographic Horizon Shield: LLM Defenses with Phi-3 Integration

https://github.com/jadeavsmith-tech/holographic-horizon-shield-v2
1•solutionsgirl39•21m ago•0 comments