this post was submitted on 16 Sep 2024
228 points (98.7% liked)

Technology

72984 readers
3888 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
L4s@hackingne.ws
228
23andMe agrees to $30M settlement for breach lawsuit (www.scmagazine.com)
submitted 10 months ago by sirico@feddit.uk to c/technology@lemmy.world
37 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] jdeath@lemm.ee -1 points 10 months ago (1 children)

private keys, etc

[–] douglasg14b@lemmy.world 7 points 10 months ago* (last edited 10 months ago) (1 children)

That's literally just a long password that you can never recover your data from when you inevitably lose or forget it (remember we're talking about the majority of users here who do not use password managers).

[–] jdeath@lemm.ee -1 points 10 months ago* (last edited 10 months ago) (1 children)

there's literally zero technical reason that a user couldn't reset a private key the same as a password. after all, you just pointed out they are almost the same.

edit: if you'd like to see an example create SSH keys for your GitHub account and then reset them

[–] douglasg14b@lemmy.world 0 points 10 months ago (1 children)

That's.... Literally just a long password.

I assumed you were talking about a private key as in cryptographic private key, where your data is encrypted on the remote server and your private key is required for it to be decrypted and for you to use it.

If you just talking about something to get into an SSH key then all that is is a longer password.

[–] jdeath@lemm.ee 1 points 10 months ago (1 children)

not at all. are you expected to remember it? would it even be possible to memorize for most? not even close to the same thing, passwords have very low entropy which causes all their problems

[–] douglasg14b@lemmy.world 0 points 10 months ago* (last edited 10 months ago)

A password is literally just:

secret data, typically a string of characters, usually used to confirm a user's identity

A secret key or passcode meets that definition 🤦 You're most definitely on poor standing here.

A very long password that no one can remember (ie. A key) is still a password. Also are you unaware of the existence of password managers and random password generation...?