this post was submitted on 13 Mar 2026
1247 points (98.2% liked)
Programmer Humor
30700 readers
2141 users here now
Welcome to Programmer Humor!
This is a place where you can post jokes, memes, humor, etc. related to programming!
For sharing awful code theres also Programming Horror.
Rules
- Keep content in english
- No advertisements
- Posts must be related to programming or programmer topics
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
I love FIDO logins and next to fucking no one implements them :(
And when they do they only offer them as the second factor.
Yes, let me first input my password (from a password manager), the let me approve with a passkey that is meant to make my password not necessary.
But email based login: FUCK THAT SHIT.
Depending on the security needs using hardware based security as a second factor while still requiring some other form of auth is not actually a bad idea.
I actually prefer using FIDO2 as a second factor only cos I use YubiKey which can only store 100 RKs.
What are they?
Public key cryptography tied to physical hardware, so if you lose your phone / usb key, you need to use your backup recovery code; a fairly short one time password that negates the security benefits of Fido in one easy step.
It can also use biometrics, but that requires every device you log in on to have biometric readers.
Or you could use multiple fido key's as backups
Absolutely 100%. Click login, accept passkey signature, logged in. This is the way to go