Passkey is some sort of specific unique key to a device allowing to use a pin on a device instead of the password. But which won’t work on another device.

Now I don’t know if that key can be stolen or not, or if it’s really more secure or not, as people have really unsecure pins.

  • HidingCat@kbin.social
    link
    fedilink
    arrow-up
    67
    ·
    1 year ago

    This is starting to really get on my nerves, and I feel like discourse on the fediverse is worse; basically the attitude is that if it’s not FOSS and self-hosted, it’s shite. That attitude is fucking grating for the rest of us.

    • scorpious@lemmy.world
      link
      fedilink
      English
      arrow-up
      5
      ·
      1 year ago

      This and if any business anywhere manages to reache a significant level of success — and has the nerve to charge money for their service — it’s a sign that capitalism doesn’t work and corporations are inherently evil.

      I just assume it’s an age thing.

          • spiderplant@lemm.ee
            link
            fedilink
            English
            arrow-up
            2
            ·
            1 year ago

            HTTPS is definitely not a major reason the web turned corporate. It has its problems for sure though.

            Look at Gemini if you want an example of a decent web ecosystem that has HTTPS as a requirement for the protocol.

            Gemini benefits from two things that the web has lost:

            • small size: just like the web was once small, Gemini is still too small for any copos to consider it as an option to push their content or services although I believe there has been some small examples of this being tried.
            • simple browser spec: Gemini benefits from having a number of browsers, none of which implement anything as interactive or insecure as JS(mime types other than gem text tend to be opened by other applications) and no one browser is influencing the spec for their own goals. This means all Gemini content is static once loaded by the client. No injected ads, no scraping of data and no hijacking of the tech by private companies.