Remix.run Logo
Remix clone Hacker News
new | show | ask | jobsGithub
baby_souffle 2 days ago

> And no one in the security business seems to consider the overall burden of yet another step. Each of which is simple in by itself, but cumulatively they are a giant hassle, and so people look for workarounds.

This is a tale as old as time. At a prior gig, IT took away touch ID for ... $reasons. ~40% of the engineering team was already big into mechanical keyboards so it only took one person to "just FYI, VIA allows you to program macros". Is it _as bad_ as password on a sticky note? Not quite but I can't imagine that touch ID was _more_ of a threat.

sam_lowry_ 2 days ago | parent | next [-]

A big use case for Yubikeys is the ability to emulate a keyboard and produce a string of chars on touch.

pimlottc 2 days ago | parent | next [-]

It's a very handy fea-ccccccvklhfgjhckcnkdnhgkcdgbruuhlfbuednrjgjr-ture

HPsquared 2 days ago | parent | next [-]

It can be a little touchy.hunter2

MengerSponge 2 days ago | parent [-]

Why'd you just type a bunch of asterisks?

baby_souffle 2 days ago | parent [-]

You all have made me realize that bash.org is no longer around. Thanks for the trip down memory lane :)

MengerSponge 4 hours ago | parent | next [-]

"Do not cite the deep magic to me, witch! I was there when it was written."

https://web.archive.org/web/20230620135556/http://bash.org/?...

dizhn 2 days ago | parent | prev [-]

My pet peeves. One of the top 5 was fake. It had a typo in the server message.

arcfour 2 days ago | parent | prev | next [-]

You know what's funny is that, at least by default, these strings have some information in them that tells you the serial number and model of the key, among other things.

Groxx 2 days ago | parent | prev [-]

gesundheit

klooney 2 days ago | parent | prev [-]

Until the security team requires a password on the yubikey tap

JasperNoboxdev 2 days ago | parent | prev [-]

Curious, why remove Touch ID? Been moving everything into it seems like a really good mix of convenience + security (especially if the alternative is copying your key into AI :) )