by getting popped I mean that the provider somehow exposes/leaks information to an attacker.
A unique password limits the damage to a single provider, but passwords do still rely on good security practices like safe resets, rate limiting, encryption, salting etc etc
I say this as both someone who maintains auth for an app, but also a user. The organisational risk of passwords feels too high imo so I’m quite interested in leaving passwords behind!
benschwarz /
npub12e…vaqn4
2024-08-14 10:17:44
in reply to nevent1q…k8u7
Author Public Key
npub12enmegr5ma4s67sjk6nzmvz5mjgq04htg2kyxjegg45djlty8vaqwvaqn4Published at
2024-08-14 10:17:44Event JSON
{
"id": "1731f19edd78db7b2be93c1cc94c0caca852e7cb61e9eb018cad67a53dd582dc",
"pubkey": "5667bca074df6b0d7a12b6a62db054dc9007d6eb42ac434b284568d97d643b3a",
"created_at": 1723623464,
"kind": 1,
"tags": [
[
"e",
"fb535b6169bf4288c75c5aedeb90989433517ace0e1dd72de84b2568d71c4bea",
"",
"root",
"5667bca074df6b0d7a12b6a62db054dc9007d6eb42ac434b284568d97d643b3a"
],
[
"e",
"ec7ec2f0235a2e7fb491b1c3c9052691cdee5e63991bf543865b38915a8d1667",
"",
"reply",
"f86500d735ea38e3a46676bcd70601111127eb346aa80670240772c8b73bebc5"
],
[
"proxy",
"https://front-end.social/@benschwarz/112959387371587126",
"web"
],
[
"p",
"5667bca074df6b0d7a12b6a62db054dc9007d6eb42ac434b284568d97d643b3a"
],
[
"p",
"f86500d735ea38e3a46676bcd70601111127eb346aa80670240772c8b73bebc5"
],
[
"proxy",
"https://front-end.social/users/benschwarz/statuses/112959387371587126",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://front-end.social/users/benschwarz/statuses/112959387371587126",
"pink.momostr"
],
[
"-"
]
],
"content": "by getting popped I mean that the provider somehow exposes/leaks information to an attacker. \n\nA unique password limits the damage to a single provider, but passwords do still rely on good security practices like safe resets, rate limiting, encryption, salting etc etc\n\nI say this as both someone who maintains auth for an app, but also a user. The organisational risk of passwords feels too high imo so I’m quite interested in leaving passwords behind!",
"sig": "a130fb0af8580869b7f82624700813cec121303605e6fa5a57fe68d0ae5cc39e41add698b9a5396bccc34b939248cc0abbf2befb5665046fc10fda577422ea02"
}