Programmer Humor

26623 readers

1541 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

founded 2 years ago

MODERATORS

712

GitHub auth (lemmy.world)

submitted 2 weeks ago by skepller@lemmy.world to c/programmer_humor@programming.dev

79 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] Evotech@lemmy.world 2 points 1 week ago (1 children)

It’s not about encryption/security it’s about creating something that can’t be phished.

We know that 2fa is secure. But if an attacker can trick you into giving them the code, or typing it in a fake box. Then they own you.

Passkeys are made so that there’s nothing to give, nothing to type. You must control the device.

[–] ramjambamalam@lemmy.ca 4 points 1 week ago (1 children)

SSH keys are more like passkeys than passwords.

[–] Evotech@lemmy.world 1 points 1 week ago* (last edited 1 week ago) (1 children)

I’d love to see the state of online banking if everyone were to manage their own ssh keys

In all seriousness, they are similar, but not quite in this context.

There’s a good project on how to make ssh key infra more scalable and innately secure. Then you can use passkeys on top if you’d like.

I personally use this on all my servers.

[–] ramjambamalam@lemmy.ca 1 points 1 week ago (1 children)

I’d love to see the state of online banking if everyone were to manage their own ssh keys

Most people couldn't figure out how to download a binary release from a GitHub repo, much less clone it, regardless of HTTP or SSH.

[–] Evotech@lemmy.world 1 points 1 week ago* (last edited 1 week ago)

True, not the point though