cm0002@lemmy.world to memes@lemmy.world · 8 hours agoTake your passkey and shove it where the sun don't shinelemmy.worldimagemessage-square40fedilinkarrow-up1199arrow-down111
arrow-up1188arrow-down1imageTake your passkey and shove it where the sun don't shinelemmy.worldcm0002@lemmy.world to memes@lemmy.world · 8 hours agomessage-square40fedilink
minus-squaredeegeese@sopuli.xyzlinkfedilinkarrow-up31arrow-down5·8 hours agoIt’s shitty user experience when forced to dig out my phone to authenticate myself to a site I barely give half a shit about. Like I wouldn’t even have an account if it wasn’t forced, and now you assholes want my phone too?
minus-squarehemko@lemmy.dbzer0.comlinkfedilinkEnglisharrow-up23arrow-down2·8 hours agoI think you’re describing SMS passcode, totp or other such factors. Passcode doesn’t require phone necessarily, but you can use it too
minus-squareKusimulkku@lemm.eelinkfedilinkarrow-up9·edit-26 hours agoA lot of the stuff that has implemented passkeys so far are on mobile. And I mean the apps serving them out, not things you authenticate to.
minus-square4am@lemm.eelinkfedilinkarrow-up4arrow-down1·6 hours agoBitWarden has a desktop extension and it also handles 2FA. No reason to be using a password, which is way less secure and can be extracted from a website DB via a hack.
minus-squareKusimulkku@lemm.eelinkfedilinkarrow-up3·5 hours agoDoesn’t the 2FA protect users still, if they only got the password?
minus-squaredohpaz42@lemmy.worldlinkfedilinkEnglisharrow-up7arrow-down1·6 hours agoIn store my passkeys in my password manager, which has a desktop app to access passkeys. What are you using that you have to always use your phone?
minus-squareJackthelad@lemmy.worldlinkfedilinkEnglisharrow-up1arrow-down8·7 hours agoYes, extra security for your personal information is so irritating.
minus-squaredeegeese@sopuli.xyzlinkfedilinkarrow-up10arrow-down1·7 hours agoSecurity for who exactly? If I don’t even want an account, it’s the “security” of the sites ad targeting data that IDGAF.
It’s shitty user experience when forced to dig out my phone to authenticate myself to a site I barely give half a shit about.
Like I wouldn’t even have an account if it wasn’t forced, and now you assholes want my phone too?
I think you’re describing SMS passcode, totp or other such factors.
Passcode doesn’t require phone necessarily, but you can use it too
A lot of the stuff that has implemented passkeys so far are on mobile. And I mean the apps serving them out, not things you authenticate to.
BitWarden has a desktop extension and it also handles 2FA. No reason to be using a password, which is way less secure and can be extracted from a website DB via a hack.
Doesn’t the 2FA protect users still, if they only got the password?
In store my passkeys in my password manager, which has a desktop app to access passkeys. What are you using that you have to always use your phone?
Yes, extra security for your personal information is so irritating.
Security for who exactly?
If I don’t even want an account, it’s the “security” of the sites ad targeting data that IDGAF.