frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Passwords are okay, impulsive Internet isn't

https://www.dedoimedo.com/life/passwords-passkeys.html
3•brycewray•1y ago

Comments

palata•1y ago
Hmm... I see a rant against the state of software (bad software, AI diarrhea, ...) and TooBigTech having control over everything. I can agree with that, but it has nothing to do with the "passwords vs passkeys" question.

The rant against passkeys? I don't get it. Just like one can use a password manager controlled by TooBigTech or KeePass, one can use a passkey controlled by TooBigTech or a Yubikey. I find it great to authenticate directly with my Yubikey (over FIDO2) instead of using my Yubikey to decrypt a password and copying it in a form.

And then there is the part that is completely wrong about security. They say that they "can't trust their phone" so they don't want to keep the passkeys there. But that is not correct: if the passkeys are encrypted and the key is stored in a TPM, then that's effectively similar to having a security key (you have to trust the TPM, just as you have to trust the security key of course).

And then there is the nonsense:

> I can set up KeePass Portable on a USB key, run it in Linux via WINE, place it inside an encrypted VeraCrypt container, copy to any which file sharing service, if I want.

If the device where you enter the password is compromised, then the password will be compromised as soon as you enter it on that device. No matter how much you show off with your funny setup with WINE and VeraCrypt. A password manager doesn't protect against that, so passwords can be exfiltrated as they are used. Whereas a FIDO2 authentication requires the passkey every time. E.g. I need to physically touch my Yubikey for it to sign the challenge. It could be MitM, but it is visible ("I touched my Yubikey and it didn't work, what happened?").

Authenticating over FIDO2 with a security key is strictly superior to entering a password in a field, period.

Inside Anthropic's state-by-state plan to ratchet up AI rules

https://www.politico.com/news/2026/07/15/inside-anthropics-state-by-state-plan-to-ratchet-up-ai-r...
1•bluepeter•1m ago•0 comments

RuntimeWire – Startup intelligence for the AI economy

https://runtimewire.com/
1•enjoyyourlife•6m ago•0 comments

A Manifesto for Preserving Content on the Web (2019)

https://jeffhuang.com/designed_to_last/
1•downbad_•7m ago•0 comments

Might doomscrolling cause our commitment muscles to atrophy?

https://chrisyeh.com/2026/07/commitment-is-declining-and-why-you-should-resist.html
2•chrisyeh•7m ago•1 comments

1,300 Beautiful Wildlife Illustrations from the 19th Century Now Restored

https://www.openculture.com/2026/07/explore-1300-beautiful-wildlife-illustrations-from-the-19th-c...
1•gslin•10m ago•0 comments

OpenAI and Guardian Media Group launch content partnership

https://openai.com/index/openai-and-guardian-media-group-launch-content-partnership/
1•wertyk•10m ago•0 comments

Linux kernel won't be anti-AI – Linus Torvalds

https://lore.kernel.org/all/CAHk-%3Dwi4zC%2BZe8e%2Bp3tMv8TtG_80KzsZ1syL9anBtmEh5Z40vg@mail.gmail....
2•haritha1313•10m ago•1 comments

I Collect Blog Statistics, Respectfully

https://onlinegoddess.net/2026/07/how-i-collect-blog-statistics-respectfully/
1•cyb0rg0•14m ago•1 comments

Roman Empire GDP per Capita Map Shows That Romans Poorer Than Countries Today

https://brilliantmaps.com/roman-empire-gdp/
1•mathattack•15m ago•0 comments

Sony-Owned Crunchyroll Is Now Kneecapping Physical Anime Sales

https://www.gamespot.com/articles/sony-owned-crunchyroll-is-now-kneecapping-physical-anime-sales/
1•jmsflknr•18m ago•0 comments

GitHub Copilot: your AI pair programmer (2021)

https://github.blog/news-insights/product-news/introducing-github-copilot-ai-pair-programmer/
1•kmlsec•18m ago•0 comments

Can AI build a jet engine? JARVIS Challenge tests AI copilots

https://news.mit.edu/2026/can-ai-build-jet-engine-jarvis-challenge-tests-ai-copilots-in-tough-tec...
2•ilamont•23m ago•0 comments

Open Source, Free Tier Capable Whispr Using Cloudflare AI

https://github.com/PrestigePvP/Voicebox
1•TreDub•25m ago•0 comments

Where Americans Thrive in Europe

https://palombo.substack.com/p/where-americans-actually-thrive-in
2•znnajdla•26m ago•0 comments

Fleet: Hierarchical Task-Based Abstraction for Megakernels on Multi-Die GPUs

https://arxiv.org/abs/2604.15379
3•matt_d•27m ago•0 comments

The Shape of Apps

https://parakeet.co/blog/the-shape-of-apps/
2•OuterVale•27m ago•0 comments

AI Coach for Creators

https://getboom.ai
1•MakeSenseAna•29m ago•1 comments

Making colordx fast: V8 lessons from a color library

https://dkryaklin.com/blog/colordx-v8-performance
1•matthberg•29m ago•0 comments

Ask HN: Is consciousness fundamentally a process of preserving identity?

1•diarrheaasmr•30m ago•0 comments

Why Visiting This Lost Island Will Kill You [video]

https://www.youtube.com/watch?v=oWarOTnOIeI
1•dataflow•30m ago•0 comments

Accelerating Block Low-Rank Foundation Model Inference on MemoryConstrained GPUs

https://dl.acm.org/doi/full/10.1145/3806645.3807580
2•matt_d•38m ago•0 comments

You didn't live a life. You doomscrolled [video]

https://www.youtube.com/watch?v=KPLEmp9CinU
3•jv22222•39m ago•0 comments

Local-first agent governance: keeping an AI agent contained

https://vektorgeist.com/blog/local-first-agent-governance
1•VektorGeist•43m ago•0 comments

No Space Like J-Space

https://thezvi.substack.com/p/no-space-like-j-space
2•codewiz•43m ago•0 comments

Is a "Phi-Zero" AI architecture viable for safe robotics?

https://github.com/GorrihmAI/fbai-nonconscious-ai/tree/main
2•GorrihmAI•46m ago•1 comments

Browsing Intent: A Practical Shopper Intent Signal for Ecommerce

https://drive.google.com/file/d/1nHvhFPtJnWdjQgAKUGQFWEIUA23Od202/view?usp=drive_link
1•philroselli•49m ago•0 comments

Running Gemma4 on Apple Neural Engine

https://rockyshikoku.medium.com/running-gemma4-on-apple-neural-engine-79fa0cb39dd2
2•nmfisher•49m ago•0 comments

Reverse-engineering a forgotten 80s arcade game for the Taito SJ System

https://fippi.io/reverse-engineering-adventure-canoe/
1•fippi•49m ago•0 comments

It may be impossible to make data centers pay 'fair share' of electricity costs

https://theconversation.com/it-may-be-almost-impossible-to-make-data-centers-pay-their-fair-share...
2•derbOac•50m ago•1 comments

Ubuntu 26.04 LTS vs. Windows 11 vs. CachyOS Performance on a $5399 Laptop

https://www.phoronix.com/review/razer-blade18-windows-linux/8
2•dcu•52m ago•0 comments