0
Passwords
(infosec.pub)
Discussion of passwords, password managers, biometrics, CAPTCHAs, secret questions, MFA/2FA/2SV, or other factors related to user authentication.
If humans weren't idiots passwords alone would be fine.
I mean you can still steal cookies like it happened to linus youtube account
If people were good with password then cookies may not be needed.
Well if there were good passwords they woudn't be short which could be annoying to some impatient people. And out of convenience there is sessions/cookies that let you stay logged in without user authentification