Blame folks like Jobs and Gates for this and all other tech giants who made technology extremely user friendly instead of educating the masses how to actually understand and use your computer safely. Now they are just sheeps.

But I don’t think it would make any difference. What would actually secure the account is the internal account password which both Signal and Whatsapp already have.

If a phone gets stolen, you can easily file a complaint, get that sim deactivated and a replacement within an hour. Put it in another phone and logout of any accounts from the stolen phone. If the stolen phone has a lock, then it is pretty difficult for a random thief to extract the data from the phone.

Source: My phone was stolen in 2014 and had my brother’s phone number in it who was in another country. My parents lodged a complaint the next day, deactivated the sim and got a replacement in 3 hours. My phone didn’t have a lock but thankfully I did not have any sensitive data on it and I reset my google account password ASAP after I lost it and logged out of all devices. I still use all the important accounts that were on that phone till this date.

So I doubt the new measures will be any useful given that you already need to verify your govt id and biometrics to get a phono number in the first place.

I doubt because to get a phone number in India you already need to provide and verify your government id and biometrics. Without it even the vendor can’t hit next button to allocate the phone number.

Huh, interesting. Because other than appearance and keyboard shortcuts, I haven’t configured anything to affect these behaviors.

I switched my laptop last year and installed Arch with Plasma 6 so it was working out of the box. My previous laptop had Arch with Plasma 5 and then updated to 6 and also had Gnome before that. So it could have been I might I have configured something over there to get those things working (I don’t remember doing that though) but the newer one had it by default.

You might have configured something that broke it because there ain’t no way what you are saying is not supported on Linux.

I know Arch is a rolling release so it doesn’t have that on purpose, but it’s not much better with Ubuntu - I was getting updates every couple of days, once a week at best.

You don’t have to update if you don’t want to and you can schedule your updates as well with a bash script (although I prefer to do it manually once a week). I have a Windows VM used for MS office and Adobe that hasn’t been updated for months.

Window tiling doesn’t exist “out of the box”, you need third party software

It is out of the box. Meta + Arrow Keys and/OR Meta + PgUp. I use it all the time lol since KDE Plasma 5 and Gnome whatever version it was 3 years ago.

)

Saving window positions (on Wayland) is the most confusing one

Confirmed works by [email protected] in above comments. Although I never tested or cared for it.

SDDM displays the same interface on each monitor, and each is a separate instance of SDDM

I don’t know about desktop towers, for laptop it is always only one instance — my laptop display, monitor is dark before I hit enter. And for the normal KDE lockscreen, it does give it on both the screens but I can enter my password in any one of them and logon.

if you disconnect an extra screen, all the content gets dropped on the main screen. Since Windows 11, if you then re-connect the screen, all windows will pop back into their places before the disconnect happened.

same happens on KDE Plasma.

Linux has all of this out of the box (don’t know about windows positions after reboot, I have never tried that even on Windows). What distro and DE are you using? I am using Arch with KDE Plasma and it has been pretty much flawless and stable for me.

Wait… Either I have bad grammar or you misinterpreted lol. I meant “Linux has more to offer than Windows”

I really don’t see what more Windows has to offer than Linux other some shitty software that cannot be run on Linux (Looks at newer Office and Adobe). In that case I can just boot up a VM with black-flag Windows Pro on it.

*Suddenly starts to play porn.

ruled by gangs and crime syndicates with all the bullshit that comes with that….

It’s literally how India has been ruled for its independent history. Ruled by one family for almost 70 years. Pretty much half of our current parliament has some criminal history either in Murder and Rape, have given hateful and divisive speeches or in some way or the other related to their local gangsters.

This article is so bad, take it with a pinch of salt.

True for all Indian media.

There’s a very long history of bogus announcements around Aadhaar, governments (remember it was introduced by Congress in the name of anti-corruption)……

True

But in India maybe more than in most places, so many people seem to believe this is a good thing to comply….

EXTREMELY TRUE. Fuckers literally worship the government at this point.

Cherry on top, the country is extremely tech illiterate and any form of protest will directly land you in prison on the grounds of terrorism w/o a fair trial.

No No! He is a non-biological being who is destined to save the country sent by shri ram himself! /s

I set my mother up on my Vaultwarden instance and she uses it just fine w/o needing to configure anything other than me setting it as the Default Passkey Provider.

Didn’t have to explain her anything other than telling her to scan her fingerprint when the prompt comes. 🤷🏻‍♂️

… continues to make Play Integrity an integral part of Android and making all the stupid banking and govt apps requiring having it on your phone thus making it harder to de-google.

still no… fuck you.

That’s why it’s important to avoid vendor lock-in and use actual reputable password managers to secure your passkeys such as Bitwarden, 1Password, or KeePass. On Android 14+ and iOS, you can even set your preferred password manager as the default passkey provider.

If you don’t fully trust Bitwarden servers, you can self-host a Vaultwarden instance, which is compatible with Bitwarden clients. Alternatively, using a yubikey is also a great hardware based option. Just because Google & Microsoft are heavily promoting passkeys doesn’t mean they’re inherently bad.

Passkeys work flawlessly for me across platforms:

• Android 14–15 (except on Brave with de-Googled devices)
• iOS 17–26 (and likely beyond)
• Windows 11
• Linux; while it doesn’t have OS-level integration yet, passkeys work perfectly in modern browsers

Personally, I use passkeys everywhere. I host my own Vaultwarden instance to store all my passkeys, and for redundancy, I also keep separate ones in my Keepass database, which I use for TOTPs. My self-hosted stack is secured by Authentik, running completely passwordless and uses passkeys for authentication and other apps integrate via OAuth and Proxy Auth.

I still don’t quite understand the issue you mentioned with websites. Typically, the passkey mechanism is triggered directly by the browser or OS (if you’re on mobile). You’ll be prompted to either save a new passkey or sign in with an existing one. If your password manager is correctly set up as the default credential provider, it should work seamlessly. Even without a browser extension, most Chromium-based browsers let you scan a QR code with another device that has your passkeys or you can simply insert a yubikey to authenticate.

What infuriates me is that some services like Amazon use passkeys only as second factor and asks for an OTP anyways which defeats the whole purpose. But for services that do it right, passkeys works seamless!

What are using lol? I have never been asked to plug in my phone to a computer. I have use Bitwarden and KeepassXC and also used my phone to scan the QR in chromium browsers for passkeys and it just worked in all the browsers flawlessly (even ungoogled chromium). I just want Linux Distros to allow setup a default password manager for the user and implement passkeys auth mechanism for the apps installed in the device.

But what’s dystopian about passkeys? They are actually more secure than Password + TOTP. Phishing out a passkey is practically impossible.

I am not dependent on any ecosystem for passkeys. I have a self-hosted vaultwarden instance that works with Bitwarden clients. I create and store my passkeys over there primarily and in my keepass db (which I primarily use for TOTPs) for redundancy. So if either one gets compromised, I can just delete the passkey for the accounts involved in that database.