this post was submitted on 19 May 2026
58 points (100.0% liked)

PC Master Race

21167 readers
603 users here now

A community for PC Master Race.

Rules:

  1. No bigotry: Including racism, sexism, homophobia, transphobia, or xenophobia. Code of Conduct.
  2. Be respectful. Everyone should feel welcome here.
  3. No NSFW content.
  4. No Ads / Spamming.
  5. Be thoughtful and helpful: especially when new beginners have questions.

founded 2 years ago
MODERATORS
Brunbrun6766@lemmy.world
_MoveSwiftly@lemmy.world
Xeon@lemmy.ml
IowaMan@lemmy.world
The_Vampire@lemmy.world
CatZoomies@lemmy.world
geosoco@kbin.social
Fudgeknuckles98@lemmy.world
BobaFett26@lemmy.world
58
Microsoft is killing SMS codes for Microsoft account sign-in, aggressively pushes passkeys on Windows 11 (www.windowslatest.com)
submitted 1 day ago by sanitation@lemmy.radio to c/pcmasterrace@lemmy.world
33 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] adarza@lemmy.ca 9 points 1 day ago (1 children)

the extra work this will no-doubt create for me might pay the rent for a couple months. but still, i'd rather it be opt-in, not forced upon users or them being tricked into it.

[–] sloppy_diffuser@sh.itjust.works 3 points 1 day ago (2 children)

Passkeys are objectively better. They close the phishing attack vector. Depending on the site they remove the need to use a password at all. Different sites do different things.

  • GitHub: Passkey only
  • Amazon: Passkey -> SMS/Authenticator 2FA
  • Google: Password -> Passkey 2FA (one of the options)
[–] 4am@lemmy.zip 10 points 22 hours ago (3 children)

I think most people do not like them because the default is to let your OS store them, device locked, in a TPM.

More password managers need to support them. I store all mine in Bitwarden although given what seems to be going on there I don’t think I can recommend them anymore.

[–] adarza@lemmy.ca 4 points 15 hours ago

a password, and the concept, are also easier to comprehend. passkeys for most is just fairy dust and magic.

another consideration is something you have or something you are are different from something you know. phishing and hackers or scammers are not the only dangers to protect yourself from.

[–] deranger@sh.itjust.works 1 points 12 hours ago

My passkeys are stored on my phone, I just scan a QR code and they’re sent over to the PC for that login. I’ve never seen the default on Windows be anything but this.

[–] sloppy_diffuser@sh.itjust.works 2 points 21 hours ago

Yeah I need to check out vaultwarden. Huge disappointment as its been a great product, but I'm not liking where the recent website changes are heading.

[–] GenderNeutralBro@lemmy.sdf.org 1 points 14 hours ago (1 children)

Not really comparable. Passkeys don't replace 2FA. You need to bootstrap passkeys with 2FA.

[–] sloppy_diffuser@sh.itjust.works 2 points 13 hours ago (1 children)

Google allows for them to be used for 2FA.

You can use them for the password also which I didn't know. You have to choose sign in another way to get the option.

[–] GenderNeutralBro@lemmy.sdf.org 1 points 12 hours ago

That's after you already have a passkey. I don't think you can create a passkey without a different form of 2FA. At least...you shouldn't be able to, because that would kind of defeat the purpose.