this post was submitted on 13 Mar 2026
1164 points (98.1% liked)
Programmer Humor
30343 readers
2006 users here now
Welcome to Programmer Humor!
This is a place where you can post jokes, memes, humor, etc. related to programming!
For sharing awful code theres also Programming Horror.
Rules
- Keep content in english
- No advertisements
- Posts must be related to programming or programmer topics
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Registration and login should be password less anyway. There's alredy tech for doing it with cellphone or external hardware key.
Storing your password hash is just stupid and insecure
But you can lose that hardware or it breaks very easily.
Until you lose your cellphone or hardware key, that is.
Also, I will not pay any money for a thing just to authenticate myself with.
Same thing if you lose your password database or your master password.
You've alredy paid for your cellphone and it is alredy equipped with necessary circutry
By paying money I meant specifically the hardware keys, of which I would also need at least two, just for backup/availability reasons.
Yes, if I lose my phone and my passords are all just on there, I am in trouble, but I currently don't handle it that way.
But if a service relies on specifically my phone (or any other single device) as a factor and it breaks or gets lost, I’m potentially in trouble and I don’t like that.