frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Passwords are okay, impulsive Internet isn't

https://www.dedoimedo.com/life/passwords-passkeys.html
3•brycewray•1y ago

Comments

palata•1y ago
Hmm... I see a rant against the state of software (bad software, AI diarrhea, ...) and TooBigTech having control over everything. I can agree with that, but it has nothing to do with the "passwords vs passkeys" question.

The rant against passkeys? I don't get it. Just like one can use a password manager controlled by TooBigTech or KeePass, one can use a passkey controlled by TooBigTech or a Yubikey. I find it great to authenticate directly with my Yubikey (over FIDO2) instead of using my Yubikey to decrypt a password and copying it in a form.

And then there is the part that is completely wrong about security. They say that they "can't trust their phone" so they don't want to keep the passkeys there. But that is not correct: if the passkeys are encrypted and the key is stored in a TPM, then that's effectively similar to having a security key (you have to trust the TPM, just as you have to trust the security key of course).

And then there is the nonsense:

> I can set up KeePass Portable on a USB key, run it in Linux via WINE, place it inside an encrypted VeraCrypt container, copy to any which file sharing service, if I want.

If the device where you enter the password is compromised, then the password will be compromised as soon as you enter it on that device. No matter how much you show off with your funny setup with WINE and VeraCrypt. A password manager doesn't protect against that, so passwords can be exfiltrated as they are used. Whereas a FIDO2 authentication requires the passkey every time. E.g. I need to physically touch my Yubikey for it to sign the challenge. It could be MitM, but it is visible ("I touched my Yubikey and it didn't work, what happened?").

Authenticating over FIDO2 with a security key is strictly superior to entering a password in a field, period.

The Whole Half-Life

https://twhl.info/wiki/index
1•jonl247•4m ago•1 comments

Show HN: An Anonymous Writing Platform

https://github.com/du82/nonograph
1•arkhiver•4m ago•0 comments

What is CDP (Chrome DevTools Protocol): A beginners guide

https://www.browserbase.com/blog/what-is-cdp
2•Kylejeong21•5m ago•0 comments

Chai Discovery nabs $400M Series C as AI-designed antibodies reach Big Pharma

https://siliconangle.com/2026/07/14/chai-discovery-nabs-400m-series-c-ai-designed-antibodies-reac...
1•bookofjoe•5m ago•0 comments

In remote northern Philippines, a local solution to the global energy shock

https://www.csmonitor.com/World/Asia-Pacific/2026/0511/Philippines-Apayao-hydro-power-electricity...
1•thunderbong•6m ago•0 comments

Show HN: The AI Lethal Trifecta

https://www.getjailbroken.com/
3•Getchowned•8m ago•0 comments

A simple console.log() per request can hurt performance

https://twitter.com/_pi0_/status/2078164967367295257
1•tosh•8m ago•0 comments

Industry Brief: Private 5G for Ports and Logistics [pdf]

https://framerusercontent.com/assets/6SwmKg79S0L8QRk3FAd1tWO9SQ.pdf
1•y2so•9m ago•0 comments

Show HN: Lific, an issue tracker that works as memory for coding agents (Rust)

https://lific.dev
1•Void_Null•11m ago•0 comments

Much of the crypto universe is "gambling" with a better vocabulary

https://medium.com/@rakeshmenon13/much-of-the-crypto-universe-is-gambling-with-a-better-vocabular...
2•rakeshmenon•13m ago•0 comments

The Inside Story of IBM’s Shocking Profit Warning

https://www.wsj.com/tech/the-inside-story-of-ibms-shocking-profit-warning-839ef4f2
1•tcp_handshaker•13m ago•0 comments

Reading List of Precision Engineering Books

https://precisionmindsetllc.com/recommended-readings.html
1•o4c•17m ago•0 comments

Learning a few things about running SQLite

https://jvns.ca/blog/2026/07/17/learning-about-running-sqlite/
2•surprisetalk•18m ago•0 comments

Show HN: Hardware Needs Its Vibe Coding Moment

https://opuslabs.substack.com/p/hardware-needs-its-vibe-coding-moment
1•opuslabs•19m ago•0 comments

Show HN: Ogblocks – Copy-Paste Animated UI Library for Modern Web Apps

https://ogblocks.dev
1•karanzhacker•19m ago•0 comments

Black Horse: One Stop to Orbit

http://www.ai.mit.edu/projects/im/magnus/bh/analog.html
1•ctoth•19m ago•1 comments

Day 2 – Standup on my side hustle

https://twitter.com/ab44997/status/2078172383978885363
1•atomiomi•24m ago•0 comments

Hold Firm on Chinese Memory Chips Ban

https://chinaselectcommittee.house.gov/media/letters/moolenaar-whitesides-to-secretary-lutnick-ho...
1•T-A•25m ago•1 comments

Trump Media pitched $100k monthly fee for fast feed of president's posts

https://www.ft.com/content/e466df85-fa3b-4a7f-a4a1-ae04d66db99f
2•tcp_handshaker•25m ago•1 comments

Askelephant

https://www.askelephant.ai
1•SQbean•27m ago•0 comments

A Jailbroken PS5 (Running Linux) Can Run Steam Now [video]

https://www.youtube.com/watch?v=UhnLdFYR2-s
3•rvz•28m ago•0 comments

Major earthquake off Mexican coast triggers tsunami threat

https://globalnews.ca/news/11969962/mexico-earthquake-tsunami-warning/
2•Bender•28m ago•0 comments

Personal Systems Series

https://yusufaytas.com/series/personal-systems
3•yusufaytas•29m ago•1 comments

AI scans your expenses and shows you where to save

https://scanticket.io/en
2•sunhp•31m ago•0 comments

7.3 earthquake off cost of Mexico, Quatamala

https://earthquake.usgs.gov/earthquakes/map/?extent=9.37259,256.27823&extent=19.19648,277.09732&m...
3•Bender•31m ago•0 comments

PlayStation 5 – Total Bounty Pot $24,152.00

https://bounties.fulu.org/bounties/playstation-5
3•Cider9986•32m ago•0 comments

Zenban

https://github.com/berkaycit/zenban
1•berkaycit•33m ago•0 comments

State AGs sound alarm over Enova, OppFi buying banks

https://www.americanbanker.com/news/state-ags-sound-alarm-over-enova-oppfi-buying-banks
1•petethomas•33m ago•0 comments

How are you giving AI agents access to postgress?

2•Eapz_06•34m ago•0 comments

The Best Running Shoes You Can't Get Your Hands On

https://www.theatlantic.com/ideas/2026/07/running-shoes-china-america/687941/
1•littlexsparkee•34m ago•0 comments