skepller@lemmy.world to Programmer Humor@programming.devEnglish · 3 days agoGitHub authlemmy.worldimagemessage-square67fedilinkarrow-up1550arrow-down115
arrow-up1535arrow-down1imageGitHub authlemmy.worldskepller@lemmy.world to Programmer Humor@programming.devEnglish · 3 days agomessage-square67fedilink
minus-squaretwice_hatch@midwest.sociallinkfedilinkEnglisharrow-up1·18 hours agoIf by “passkey” they mean an HSM I’m okay with it I’d still rather have TOTP as my 2nd factor so I don’t have to plug shit in
minus-squarephilosloppy@lemmy.worldlinkfedilinkarrow-up1·3 hours agoTOTP is the superior option, IMO, but I’m no expert on security so maybe they’re insecure? it sure seems like some folks would rather do anything but time-based onetimes. hardware keys are a pain in the neck, just one more thing to be lost.
minus-squareJackbyDev@programming.devlinkfedilinkEnglisharrow-up1·17 hours agoI’ve plugged my phone in so many times and it doesn’t detect shit. I’d rather stick with totp/email.
If by “passkey” they mean an HSM I’m okay with it
I’d still rather have TOTP as my 2nd factor so I don’t have to plug shit in
TOTP is the superior option, IMO, but I’m no expert on security so maybe they’re insecure? it sure seems like some folks would rather do anything but time-based onetimes.
hardware keys are a pain in the neck, just one more thing to be lost.
I’ve plugged my phone in so many times and it doesn’t detect shit. I’d rather stick with totp/email.