Skip Navigation

InitialsDiceBearhttps://github.com/dicebear/dicebearhttps://creativecommons.org/publicdomain/zero/1.0/„Initials” (https://github.com/dicebear/dicebear) by „DiceBear”, licensed under „CC0 1.0” (https://creativecommons.org/publicdomain/zero/1.0/)E

Encrypt-Keeper

@ EncryptKeeper @lemmy.world

Posts
6
Comments
1461
Joined
3 yr. ago

  • Terminally ill Borderlands fan asks if there's any way he can see Borderlands 4 early, Gearbox boss Randy Pitchford says "we're going to do whatever we can to make something happen"

    Jump

  • Yeah people were spoiled by how good the characters and story were in Borderlands 2. They forgot how Borderlands 1 didn’t even really have a plot and for the most part doesn’t need one.

  • Terminally ill Borderlands fan asks if there's any way he can see Borderlands 4 early, Gearbox boss Randy Pitchford says "we're going to do whatever we can to make something happen"

    Jump

  • …yeah? It’s a video game, not a movie. Why would anyone let three things that aren’t crucial to a game stop them from enjoying the things that are crucial to a game? The skip cutscene button works just fine lol.

  • Terminally ill Borderlands fan asks if there's any way he can see Borderlands 4 early, Gearbox boss Randy Pitchford says "we're going to do whatever we can to make something happen"

    Jump

  • As a Borderlands sequel, or just as a game? I’ve never actually heard anyone complain about the gameplay. It’s the same gameplay the series is known for but even more refined, with tons of QoL improvements. It is quite literally the best in its class with no real equal.

    The only thing I can imagine about your friends is that they didn’t get through much of the gameplay because they were turned off by the horrifically bad writing, cringelord villains, and a sense of humor firmly stuck 15 years in the past, which I would not blame them for.

  • Terminally ill Borderlands fan asks if there's any way he can see Borderlands 4 early, Gearbox boss Randy Pitchford says "we're going to do whatever we can to make something happen"

    Jump

  • Plot, characters, and writing aside, Borderlands 3 was a very well made and fun game on a technical level. I’m definitely interested in Borderlands 4, as long as we can continue to skip cutscenes lmao.

  • What happens when a secretive blockchain company buys your game studio

    Jump

  • You ask who the fuck decided to sell your studio to a secretive block chain company

    Most likely the private equity firm that owns your company

  • I'd have to hear her argument, but...

    Jump

  • I think he’s talking about vidya

  • Amazon cloud boss says employees unhappy with 5-day office mandate can leave

    Jump

  • which they can't outright as after a certain number of years they have to give warnings and trainings first.

    I mean, says who? There’s currently only one state in the union that requires cause before you can fire someone. The real issue with firing people is that without a documented cause, that person can collect state unemployment, and the number of people who go on state unemployment from a single company has a financial impact on that company.

  • Amazon announces first Kindle ever with color screen, retailing for $279

    Jump

  • Aw man I didn’t even know about that. I guess 4g LTE is Amazon’s “Black Magic”

  • Amazon announces first Kindle ever with color screen, retailing for $279

    Jump

  • When it happened to me I was staying with a family member whose house I’d never been to before, so I didn’t have their wifi. I couldn’t believe it.

  • Amazon announces first Kindle ever with color screen, retailing for $279

    Jump

  • Yeah same. Until I accidentally turned it off 1,000 miles away from my computer. That was a sad day.

  • Amazon announces first Kindle ever with color screen, retailing for $279

    Jump

  • Until it decides to delete every single side loaded book you have on there, which they like to do from time to time. The only way to completely avoid it is to load all your content via email, which unfortunately only supports limited formats.

  • Passwords have problems, but passkeys have more

    Jump

  • Not even close. To be honest you’re operating on so many incorrect assumptions and have such a lack of general knowledge of common attack surfaces or even the average scope of modern breaches, that digging you out of this hole would take so much more than what I can fit in a single comment.

    So

    If the password is compromised, it means the service is compromised and the password isn't really protecting anything anymore

    No… just no. That isn’t how it works. In reality, what commonly happens is metadata around the service is what’s targeted and compromised. So your password, email, and other data like that are what’s stolen. Maybe in plain text, maybe something hashed that a malicious actor can brute force offline without you knowing. If you’re someone using a password in this situation, your password is then used to access your account, and that actor can do any number of things while masquerading as you, potentially entirely undetected. If you’re using a passkey on the other hand, this isn’t even something you need to worry about. They cannot get access to your passkey because the service doesn’t even have it. You are entirely immune. That is something that no amount of Passwords or bolt-ons will fix.

    This is the main value of passkeys, they are not shared secrets. Not only is that a huge difference, it’s the single largest paradigm shift possible. The secondary value of passkeys is that they are immune to phishing. This is also huge, as phishing is hands down the most successful way to break into someone’s account, and happens to even the most security conscious people. If a cybersecurity researchers who write books on the topic can be phished, so too can a layman such as yourself. Hand waving away a phishing immune authentication system is unhinged behavior. And it goes to show you’re not even coming from a place of curiosity or even ignorance, but likely misinformation.

    In short:

    • Passkeys > Passwords
    • Passkeys > Random Passwords + TOTP.

  • Passwords have problems, but passkeys have more

    Jump

  • Bitwarden stores your passkeys on your local device. It can sync the passkey between devices but that’s end to end encrypted, bitwarden never has access to any of your passkeys or even your passwords.

  • You should be using an RSS reader.

    Jump

  • It’s just a web based client instead of a desktop one. And it can usually output its own RSS feed that contains your other feeds so you can hook any RSS desktop client on any device to it.

  • Passwords have problems, but passkeys have more

    Jump

  • Yes you can use a passkey set up on any given service to authenticate to a service that supports passkeys. You’d need import/export to move a given passkey from bitwarden to Windows.

  • Passwords have problems, but passkeys have more

    Jump

  • Sure, and then that one password is compromised.

    Which means that entire service you used that password to login to is compromised. If you were using passkeys however, you would have nothing compromised.

    so if a service is breached, you're basically as screwed with passwords as passkeys.

    No… with a passkey you would be not screwed at all. You’d be entirely unaffected.

    the security benefits are marginal in practice

    I mean in your own example that’s a reduction of 100%. That’s kind of a huge difference.

  • Passwords have problems, but passkeys have more

    Jump

  • The interoperability already exists in the protocol webauthn, part of FIDO2 which has been around for almost a decade. Interoperability is not remotely an issue with passkeys. Imported/export is/was and also already has a solution in the works.

  • Passwords have problems, but passkeys have more

    Jump

  • This is the “Technology” community which isn’t for people who are actually tech-savvy in any functional way, it’s just for gadget-head laymen.

  • Passwords have problems, but passkeys have more

    Jump

  • Storing passwords in a password manager is storing a shared secret where you can only control the security on your end and thus is still vulnerable to theft in a breach, negligence on the part of the party you’ve shared it with, phishing, man in the middle potentially, etc.

    Storing a passkey in a password manager on the other hand is storing an unshared secret that nobody but you has access to, doesn’t leave your device during use, is highly phishing resistant, can’t be mishandled by the sites you use it to connect to etc.