this post was submitted on 13 Mar 2026
1247 points (98.2% liked)

Programmer Humor

30700 readers
2141 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

founded 2 years ago
MODERATORS
Feyter@programming.dev
anzo@programming.dev
BurningTurtle@programming.dev
pylapp@programming.dev
1247
I love password based login (infosec.pub)
submitted 2 weeks ago by bdjegifjdvw@lemmy.world to c/programmer_humor@programming.dev
176 comments fedilink hide all child comments
(page 2) 50 comments
sorted by: hot top controversial new old
[–] kandoh@reddthat.com 8 points 2 weeks ago (1 children)

Very few things on the internet and computer actually need accounts. Everything requiring a login is a cancer.

[–] teaHead74@programming.dev 5 points 2 weeks ago

Yes and no in most cases it is used to limit misuse somewhat but i absolutely agree that its taking over hand. God bless trashmails.

[–] sanbdra@lemmy.world 8 points 2 weeks ago

Password manager users living life on easy mode.

[–] Zos_Kia@jlai.lu 8 points 2 weeks ago

Recently finished a side project and I was glad I could go with pure login/pass auth. No email no oauth, just a pass phrase for account recovery. It's refreshing and so damn simple.

[–] Xziz@lemmy.world 7 points 2 weeks ago

A lot of motherfuckers typing in code with a keyboard need a beating with said keyboard.

If a programmer can’t get a login form right they need permabanned from ever shipping another release.

[–] 13igTyme@piefed.social 6 points 2 weeks ago* (last edited 2 weeks ago) (1 children)

It's over the phone, but the "We'll send you a text to confirm your identity if you provide a phone number." Has got to be one of the stupidest wastes of time.

load more comments (1 replies)
[–] maniclucky@lemmy.world 6 points 2 weeks ago

Worst one I've seen: username and password plus a 2FA email, BUT if you hit enter instead of clicking the last button it refreshes the page.

[–] baller_w@lemmy.zip 5 points 2 weeks ago (1 children)

Passkeys or oauthn/fido. I just can’t believe we’re still talking about passwords in 2025 when these very robust, user friendly features have been widely available for years.

load more comments (1 replies)
[–] TheObviousSolution@lemmy.ca 5 points 2 weeks ago* (last edited 2 weeks ago) (13 children)

On the other end, there is an excessive use of 2FA with systems for whom the concept of SSO seems to be a foreign thing. It's also sort of funny that 2FA can just mean using a TOTP capable password manager, reverting it back to one factor.

load more comments (13 replies)
[–] bamboo@lemmy.blahaj.zone 5 points 2 weeks ago (1 children)

I can imagine that the sites want to validate that you still have access to the email associated with the account, and asking people to check their settings is annoying, and they know no one will do it. I can also imagine that sites want to know as much about you as possible, don't want you to be using burner email addresses, and are probably selling the fact that your email address can still receive email to marketing firms who compile that info.

load more comments (1 replies)
[–] slut@lemmy.world 4 points 2 weeks ago

Exactly

[–] Korne127@lemmy.world 4 points 2 weeks ago (13 children)

Magic link only is the wirst kind of login systems. However, I don’t know any big real companies that use this.
If you don’t like passwords, just use passkeys.

[–] ApertureUA@lemmy.today 8 points 2 weeks ago

Slack (except when with SSO). You have to go out of your way to find the settings page outside of the client to set a password.

[–] tribut 4 points 2 weeks ago

Booking.com (at least in Germany) only useagic links for some time now. I hate it.

load more comments (11 replies)
[–] justOnePersistentKbinPlease@fedia.io 3 points 2 weeks ago

But if they don't get an active email and/or phone number.

How can they then turn around and sell that to info brokers and spammers.

load more comments
view more: ‹ prev next ›