1339

I love password based login (lemmy.world)

submitted 2 months ago by bdjegifjdvw@lemmy.world to c/programmer_humor@programming.dev

199 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[-] UnfortunateShort@lemmy.world 23 points 2 months ago

I love FIDO logins and next to fucking no one implements them :(

[-] sunbeam60@feddit.uk 6 points 2 months ago

And when they do they only offer them as the second factor.

Yes, let me first input my password (from a password manager), the let me approve with a passkey that is meant to make my password not necessary.

But email based login: FUCK THAT SHIT.

[-] Fiery@lemmy.dbzer0.com 1 points 2 months ago

Depending on the security needs using hardware based security as a second factor while still requiring some other form of auth is not actually a bad idea.

[-] imouto@lemmy.world 1 points 2 months ago

I actually prefer using FIDO2 as a second factor only cos I use YubiKey which can only store 100 RKs.

[-] onlinepersona@programming.dev 3 points 2 months ago

What are they?

[-] scholar@lemmy.world 8 points 2 months ago

Public key cryptography tied to physical hardware, so if you lose your phone / usb key, you need to use your backup recovery code; a fairly short one time password that negates the security benefits of Fido in one easy step.

It can also use biometrics, but that requires every device you log in on to have biometric readers.