Hacker News new | ask | show | jobs
by grupthink 1135 days ago
Banning has nothing to do with it.

You use passkeys as a preferred login method.

If you do not have your passkey, you can tap "Try Another Way" and use your password as usual.
1 comments
nine_k 1135 days ago
This means that you still need a password, which you still should store securely.

It just becomes much harder to phish out this password.

link
reustle 1134 days ago
Maybe "Passkey" + "Magic sign-in link email" will be a good enough combo for most?

If you've also lost access to your email, you've got other problems.

link
alpos 1133 days ago
That makes your email box effectively a password vault. Might as well use a service designed for that such as LastPass, or 1Password.

Or better still, use a password calculator app such as https://spectre.app/

This kind of approach generates your passwords for different sites based on login information and a single password only you know. No other passwords are stored on any devices or services, not even within the app on the device you are using it on.

Which enables you to have different passwords for each service and solves the problem of "too many passwords to remember" without just having to write them all down in a dozen ways that can also be compromised.

link