frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Passwords are okay, impulsive Internet isn't

https://www.dedoimedo.com/life/passwords-passkeys.html
3•brycewray•1y ago

Comments

palata•1y ago
Hmm... I see a rant against the state of software (bad software, AI diarrhea, ...) and TooBigTech having control over everything. I can agree with that, but it has nothing to do with the "passwords vs passkeys" question.

The rant against passkeys? I don't get it. Just like one can use a password manager controlled by TooBigTech or KeePass, one can use a passkey controlled by TooBigTech or a Yubikey. I find it great to authenticate directly with my Yubikey (over FIDO2) instead of using my Yubikey to decrypt a password and copying it in a form.

And then there is the part that is completely wrong about security. They say that they "can't trust their phone" so they don't want to keep the passkeys there. But that is not correct: if the passkeys are encrypted and the key is stored in a TPM, then that's effectively similar to having a security key (you have to trust the TPM, just as you have to trust the security key of course).

And then there is the nonsense:

> I can set up KeePass Portable on a USB key, run it in Linux via WINE, place it inside an encrypted VeraCrypt container, copy to any which file sharing service, if I want.

If the device where you enter the password is compromised, then the password will be compromised as soon as you enter it on that device. No matter how much you show off with your funny setup with WINE and VeraCrypt. A password manager doesn't protect against that, so passwords can be exfiltrated as they are used. Whereas a FIDO2 authentication requires the passkey every time. E.g. I need to physically touch my Yubikey for it to sign the challenge. It could be MitM, but it is visible ("I touched my Yubikey and it didn't work, what happened?").

Authenticating over FIDO2 with a security key is strictly superior to entering a password in a field, period.

International chess federation sanctions Kramnik

https://www.fide.com/fide-ethics-disciplinary-commission-issues-a-decision-in-case-involving-gm-v...
1•DarkContinent•1m ago•0 comments

AI saves about 3% of your hours, and almost none of it reaches the money

https://okaneland.com/study/ai-productivity-roi-at-work/
1•ermantrout•1m ago•0 comments

Court filing: Adafruit seeks declaratory judgment against Flux [pdf]

https://storage.courtlistener.com/recap/gov.uscourts.cand.471648/gov.uscourts.cand.471648.1.0.pdf
1•wofo•2m ago•0 comments

SEC Semi-Annual Reporting Proposal Tracker

https://tzachizach.github.io/sec-semi-annual-proposal-tracker/
1•hbcondo714•2m ago•0 comments

The AI coding maturity scale

https://blog.codacy.com/the-ai-coding-maturity-scale-the-path-to-loop-engineering
1•claudiacsf•3m ago•0 comments

DOE Deletes Webpage Instructing People to Lower Thermostat to 78 – Newsweek

https://www.newsweek.com/doe-deletes-webpage-instructing-people-to-lower-thermostat-to-78-12153833
1•xnx•3m ago•0 comments

The Download: a smoking "endgame" and a new Elizabeth Bear story

https://www.technologyreview.com/2026/07/03/1140134/the-download-uk-smoking-ban-elizabeth-bear-st...
1•joozio•4m ago•0 comments

The Contribution I Was Sure Would Work, and Killed

https://medium.com/@alanscottencinas/the-contribution-i-was-sure-would-work-and-killed-b9667fdd53cc
1•encinas88•5m ago•0 comments

Built a 2007 like video website (CastIn2007)

https://cast-in2007.edgeone.app/
1•colinnW•7m ago•0 comments

Essential Until It Wasn't

https://bricolage.io/essential-until-it-wasnt/
1•Stwerner•7m ago•0 comments

The future of AI is Dumb and Dirty

https://sal4rkhn.substack.com/p/why-the-future-of-ai-is-dumb-and
2•salarkhannn•8m ago•1 comments

How AI Learned to Speak

https://www.youtube.com/watch?v=8W_qiZqocwo
1•mridul_sahu•9m ago•0 comments

Gov. Greg Abbott calls for ban on data center devel in rural Texas neighborhoods

https://apnews.com/article/texas-governor-greg-abbott-called-for-blocking-data-center-development...
1•1vuio0pswjnm7•10m ago•0 comments

Why PostHog rebuilt its data warehouse on DuckDB instead of ClickHouse

https://posthog.com/blog/why-we-rebuilt-our-data-warehouse
2•karlmush•10m ago•0 comments

Instagram running ads promoting child sexual abuse material in India, BBC finds

https://www.bbc.com/news/articles/cvgm4e0316zo
1•Teever•10m ago•0 comments

The Pains of Installing Windows '98 on a "Modern" Machine (2014)

https://www.nostalgianerd.com/windows-98-modern-machine/
1•pndy•10m ago•0 comments

Stern: Multi pod and container log tailing for Kubernetes

https://github.com/stern/stern
1•theanonymousone•10m ago•0 comments

Show HN: Mcpsnoop – Wireshark for MCP (transparent proxy and live TUI)

https://github.com/kerlenton/mcpsnoop
1•kerlenton•11m ago•0 comments

Show HN: Hamzaish, agent OS and co-builder for non-techies

https://github.com/hamza-ali-shahjahan/hamzaish
1•hamza_ali_shah•11m ago•0 comments

Tesla stock sinks 7% despite strong deliveries report, worst day in nearly 1y

https://www.cnbc.com/2026/07/02/tesla-tsla-q2-2026-vehicle-delivery-production.html
2•1vuio0pswjnm7•13m ago•0 comments

Dropping in on Gottfried Leibniz (2013)

https://writings.stephenwolfram.com/2013/05/dropping-in-on-gottfried-leibniz/
1•aragonite•13m ago•0 comments

Contextual Information Retrieval

https://luccogzest.substack.com/p/contextual-information-retrieval
1•LucCogZest•14m ago•0 comments

China boosts prestigious grants for young scientists, will it ease competition?

https://www.nature.com/articles/d41586-026-01989-5
1•Bender•15m ago•0 comments

This is nuts upon nuts. When's the crash?

https://www.ft.com/content/8e9337f8-9191-48e9-9289-a8defda89431
1•petethomas•15m ago•0 comments

A chatbot told us SpaceX never went public, 20 days after their IPO

https://www.quoin.ai/
1•quoinai•16m ago•0 comments

Loom doubles prices, offers no export functionality

https://support.atlassian.com/loom/docs/loom-customer-integration-with-atlassian-pricing-billing-...
1•rwc•17m ago•1 comments

Real-Time Phone Call Transcription Pipeline with Telnyx and OpenAI Whisper

https://old.reddit.com/r/Telnyx/comments/1umbick/how_to_build_a_realtime_phone_call_transcription/
1•harpreetseehra•19m ago•0 comments

Russian fuel crisis prompts rush for Chinese electric cars

https://www.reuters.com/business/energy/russian-fuel-crisis-prompts-rush-electric-cars-2026-07-02/
2•JumpCrisscross•19m ago•0 comments

Show HN: Quicktok, an exact BPE tokenizer 7x faster than tiktoken

https://github.com/dmatth1/quicktok
1•dmatth1•22m ago•1 comments

Beyond Hacker Mindset

https://povofview.substack.com/p/beyond-hacker-mindset
1•hyperultra•22m ago•0 comments