frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Passwords are okay, impulsive Internet isn't

https://www.dedoimedo.com/life/passwords-passkeys.html
3•brycewray•1y ago

Comments

palata•1y ago
Hmm... I see a rant against the state of software (bad software, AI diarrhea, ...) and TooBigTech having control over everything. I can agree with that, but it has nothing to do with the "passwords vs passkeys" question.

The rant against passkeys? I don't get it. Just like one can use a password manager controlled by TooBigTech or KeePass, one can use a passkey controlled by TooBigTech or a Yubikey. I find it great to authenticate directly with my Yubikey (over FIDO2) instead of using my Yubikey to decrypt a password and copying it in a form.

And then there is the part that is completely wrong about security. They say that they "can't trust their phone" so they don't want to keep the passkeys there. But that is not correct: if the passkeys are encrypted and the key is stored in a TPM, then that's effectively similar to having a security key (you have to trust the TPM, just as you have to trust the security key of course).

And then there is the nonsense:

> I can set up KeePass Portable on a USB key, run it in Linux via WINE, place it inside an encrypted VeraCrypt container, copy to any which file sharing service, if I want.

If the device where you enter the password is compromised, then the password will be compromised as soon as you enter it on that device. No matter how much you show off with your funny setup with WINE and VeraCrypt. A password manager doesn't protect against that, so passwords can be exfiltrated as they are used. Whereas a FIDO2 authentication requires the passkey every time. E.g. I need to physically touch my Yubikey for it to sign the challenge. It could be MitM, but it is visible ("I touched my Yubikey and it didn't work, what happened?").

Authenticating over FIDO2 with a security key is strictly superior to entering a password in a field, period.

Run SSH and Claude Code on 3DS

1•cadl11•2m ago•0 comments

Global Careers Hub – Free AI Tools, Scholarships and Career Resources

https://globalcareers-3qwcpfkw.manus.space/
1•Shuborna•4m ago•0 comments

DVD-Audio

https://en.wikipedia.org/wiki/DVD-Audio
2•hdz•4m ago•0 comments

Your own secure, personalized movie server

https://elvern.xyz
1•Sectum•10m ago•0 comments

Sheaf brings Clojure's code-as-data to machine learning

https://sheaf-lang.org/
1•yogthos•11m ago•0 comments

GPT-5.6-Sol get's stuck for hours

https://twitter.com/i/status/2076512930204446763
1•SunboX•11m ago•0 comments

Cloudflare Product Scores

https://orangecloud.report/
1•Brajeshwar•13m ago•0 comments

A gallery of HTML Canvas effects, for reference and killing boredom

https://kanevskyy.dev/tools/canvas-gallery/
1•korrectional•27m ago•1 comments

Why recruiters can't find workers and new grads can't find jobs (it's not AI)

https://www.seattletimes.com/nation-world/why-recruiters-cant-find-workers-and-new-grads-cant-fin...
3•WalterBright•30m ago•4 comments

1970 Plymouth Hemi 'CUDA

https://knuckledustchronicles.com/1970-plymouth-hemi-cuda/
4•frobinson47•37m ago•0 comments

A Jupiter-size planet that escaped its star's death

https://arstechnica.com/science/2026/07/a-jupiter-size-planet-that-escaped-its-stars-death/
2•pseudolus•40m ago•0 comments

Stellantis to sell small Fiat Topolino EV for $13,995 in U.S.

https://www.cnbc.com/2026/07/07/stellantis-fiat-topolino-ev.html
4•mattas•48m ago•1 comments

Vim of Coding Agents

https://rasyidanaf.com/blog/vim-of-coding-agents/
1•brutaljokerz•51m ago•0 comments

Unintentional information disclosure in LaTex Files submitted to arXiv

https://ieeexplore.ieee.org/document/11573440/
1•whym•1h ago•0 comments

Mouse cursor disappears when my refrigerator turns off

https://old.reddit.com/r/archlinux/comments/55pbqp/mouse_cursor_disappears_when_my_refrigerator/
1•polivier•1h ago•0 comments

Advertise in ChatGPT – OpenAI Ads

https://ads.openai.com/
5•hboon•1h ago•0 comments

Life among the garbage mountains of the biggest city

https://www.theguardian.com/world/ng-interactive/2026/jul/13/jakarta-trash-garbage-rubbish-bantar...
2•prawn•1h ago•0 comments

China, Russia and Others Seek to Inflame Debate over A.I. Data Centers

https://www.nytimes.com/2026/07/09/business/china-russia-ai-data-centers.html
5•lxm•1h ago•0 comments

Maps, Smaps and Memory Stats

https://jameshunt.us/writings/smaps/
2•snihalani•1h ago•0 comments

Show HN: Self-hosted voice AI agent for Asterisk/FreePBX

https://github.com/hkjarral/AVA-AI-Voice-Agent-for-Asterisk
2•hkjarral•1h ago•0 comments

Chinese voice actor forced to prove he's human against AI clones

https://www.sixthtone.com/news/1018753/TheChineseVoiceActorForcedtoProveHe’sHuman
1•whiteblossom•1h ago•1 comments

Live2D Body for Hermes Agent

https://github.com/Soundpulse/hermes-live2d
1•totallyscout•1h ago•1 comments

Japanese payment processor's collapse hits banks and restaurants

https://www.japantimes.co.jp/business/2026/07/08/companies/zentoshin-impact-restaurants/
4•mikhael•1h ago•1 comments

Thoughts on AI

https://jackpeplinski.bearblog.dev/thoughts-on-ai/
1•jackpep•1h ago•0 comments

CO2: Language backward compatible with C, with access to the Rust ecosystem

https://github.com/hkalbasi/co2/tree/main
1•Georgelemental•1h ago•0 comments

Six months daily driving Linux

https://interestingstuff.xyz/reviews/six-months-daily-driving-linux/
2•interestingstuf•1h ago•0 comments

Show HN: Baton - Know which of your AI coding agents needs you

https://github.com/neilkpatel/baton
1•nkp007•1h ago•0 comments

Show HN: Web App Uses RTL-SDR to Align HDTV Antenna

https://tunerscope.com/
3•robotastic•1h ago•0 comments

I tried 5 free image-to-ASCII converters so you don't have to

https://image-to-ascii.com/
1•LumisYY•1h ago•0 comments

That Is Load-Bearing

https://old.reddit.com/r/ClaudeAI/comments/1tob6q5/that_is_loadbearing/
4•varun_chopra•1h ago•0 comments