| 00:05:52 | <pabs> | he isn't wrong about the attestation stuff |
| 00:06:36 | <nicolas17> | yeah and then the problem is websites requiring attestation |
| 00:07:48 | <@JAA> | I have yet to see any positive use case of attestation. |
| 00:08:26 | <nicolas17> | JAA: the only vaguely-good use is inside the corporate intranet |
| 00:08:47 | <@JAA> | Yes, and that's irrelevant for the web. |
| 00:09:05 | <pabs> | theres websites inside the intranet :) |
| 00:09:14 | <nicolas17> | I meant with a broad meaning of "attestation", not just passkeys |
| 00:09:27 | | pabs wonders when passwordstore.org will get passkeys |
| 00:09:55 | <nicolas17> | I might start using passkeys in bitwarden... |
| 00:10:11 | <@JAA> | Inside trusted contexts, you want to be able to guarantee what's connecting. You don't need attestation at the web level for that. |
| 00:10:37 | <@JAA> | But yeah, it's a valid use case. |
| 00:10:40 | <nicolas17> | I can't use regular iOS passkeys because of https://bugzilla.mozilla.org/1543674 |
| 00:19:43 | <steering> | I mean, he's not wrong about the attestation stuff, but at the same time, he's wrong about the options there |
| 00:20:00 | <steering> | without that attestation a lot of people probably won't be willing to rely on it to begin with |
| 00:20:04 | <steering> | s/people/companies/ |
| 00:20:39 | <steering> | same reason people use RSA or Symantec instead of just... TOTP |
| 00:21:07 | <@JAA> | Yes, the fundamental issue is whether the spec is designed for the user or for the companies. |
| 00:21:27 | <steering> | well, if it doesn't have that then the companies simply won't adopt it |
| 00:23:00 | <steering> | realistically, you could do the exact same thing as passkeys with mTLS, you could design it for whoever you wanted, and... no one would ever use it |
| 00:25:35 | <steering> | compared to a baseline without attestation, adding it realistically removes very few options for the user - very few sites will start requiring attestation and maintaining a shitlist just because they can - but could add significantly more options - many more sites might be able to finally convince the silly "respect mah authoritah"-types to support it :P |
| 00:31:18 | <steering> | (to be completely clear I agree those sites are dumb but I'd still rather they have some passkey support than none ;)) |
| 00:31:47 | <steering> | Meanwhile I'm still over here using my Yubikey and raging at all the stuff that keeps insisting on trying to get in the way of that "for" me |
| 00:34:24 | <pabs> | https://blog.cloudflare.com/web-bot-auth/ https://lobste.rs/s/iak1lt/forget_ips_using_cryptography_verify_bot |
| 00:34:40 | <pabs> | "Today, we’re introducing two proposals – HTTP message signatures and request mTLS – for friendly bots to authenticate themselves, and for customer origins to identify them" |
| 01:40:02 | | LddPotato quits [Remote host closed the connection] |
| 01:41:52 | | LddPotato (LddPotato) joins |
| 02:11:33 | | nicolas17 quits [Quit: Konversation terminated!] |
| 02:19:58 | | nicolas17 joins |
| 02:47:10 | | lunik12 joins |
| 02:50:31 | | lunik1 quits [Ping timeout: 260 seconds] |
| 02:50:31 | | lunik12 is now known as lunik1 |
| 03:06:54 | | Naruyoko5 quits [Quit: Leaving] |
| 03:14:56 | | Naruyoko joins |
| 03:37:39 | | Naruyoko5 joins |
| 03:41:16 | | Naruyoko quits [Ping timeout: 260 seconds] |
| 05:04:39 | | Naruyoko joins |
| 05:07:47 | | Naruyoko5 quits [Ping timeout: 258 seconds] |
| 05:12:07 | | sec^nd quits [Remote host closed the connection] |
| 05:12:30 | | sec^nd (second) joins |
| 05:17:22 | | Chris50109 (Chris5010) joins |
| 05:19:51 | | Chris5010 quits [Ping timeout: 260 seconds] |
| 05:19:51 | | Chris50109 is now known as Chris5010 |
| 05:23:52 | | HackMii quits [Remote host closed the connection] |
| 05:24:20 | | HackMii (hacktheplanet) joins |
| 06:07:29 | | nicolas17_ joins |
| 06:10:01 | | nicolas17 quits [Ping timeout: 260 seconds] |
| 08:48:44 | | Dada joins |
| 10:00:07 | | MrMcNuggets (MrMcNuggets) joins |
| 10:02:10 | | Lunarian1 (LunarianBunny1147) joins |
| 10:04:52 | | LunarianBunny1147 quits [Ping timeout: 258 seconds] |
| 10:55:32 | | etnguyen03 (etnguyen03) joins |
| 11:00:03 | | Bleo182600722719623455 quits [Quit: The Lounge - https://thelounge.chat] |
| 11:02:48 | | Bleo182600722719623455 joins |
| 11:25:47 | | etnguyen03 quits [Client Quit] |
| 11:49:19 | | icedice quits [Read error: Connection reset by peer] |
| 11:50:21 | | icedice (icedice) joins |
| 12:23:03 | <that_lurker> | In case people from here are not in #hackint: "reminder that https://eci.ec.europa.eu/043/public/#/screen/home is still open until tomorrow and missing signatures still, its a european citizen initiative about introducing a legally binding ban of conversion therapy" |
| 12:23:22 | <that_lurker> | s/from/in |
| 12:57:59 | | Naruyoko5 joins |
| 13:01:58 | | Naruyoko quits [Ping timeout: 258 seconds] |
| 13:02:17 | | Naruyoko joins |
| 13:03:01 | | Naruyoko5 quits [Ping timeout: 260 seconds] |
| 13:12:59 | | Naruyoko5 joins |
| 13:16:55 | | Naruyoko quits [Ping timeout: 258 seconds] |
| 14:17:06 | | nicolas17_ quits [Ping timeout: 260 seconds] |
| 14:40:11 | | Naruyoko joins |
| 14:42:46 | | Naruyoko5 quits [Ping timeout: 260 seconds] |
| 15:11:32 | | jasons7 quits [Ping timeout: 258 seconds] |
| 15:22:10 | | jasons7 (jasons) joins |
| 15:27:41 | | riteo quits [Ping timeout: 260 seconds] |
| 15:47:57 | | Riku_V quits [Ping timeout: 258 seconds] |
| 15:50:20 | | Riku_V (riku) joins |
| 15:51:45 | | nicolas17_ joins |
| 16:23:58 | | riteo (riteo) joins |
| 17:06:52 | | grill (grill) joins |
| 17:10:10 | | fuzzy8021 (fuzzy80211) joins |
| 17:10:27 | | fuzzy80211 quits [Read error: Connection reset by peer] |
| 18:09:05 | | DogsRNice joins |
| 18:29:34 | | BornOn420 quits [Remote host closed the connection] |
| 18:30:26 | | BornOn420 (BornOn420) joins |
| 18:34:09 | | nicolas17_ is now known as nicolas17 |
| 18:42:51 | | nine quits [Quit: See ya!] |
| 18:43:03 | | nine joins |
| 18:43:03 | | nine is now authenticated as nine |
| 18:43:03 | | nine quits [Changing host] |
| 18:43:03 | | nine (nine) joins |
| 19:05:16 | | Meli quits [Ping timeout: 260 seconds] |
| 19:07:45 | | Meli (Meli) joins |
| 19:16:22 | | funderscore (funderscore) joins |
| 19:30:56 | | Meli quits [Ping timeout: 260 seconds] |
| 19:33:21 | | Meli (Meli) joins |
| 19:39:41 | | grill quits [Ping timeout: 260 seconds] |
| 19:50:11 | | nine quits [Ping timeout: 260 seconds] |
| 19:52:36 | | nine joins |
| 19:52:37 | | nine is now authenticated as nine |
| 19:52:37 | | nine quits [Changing host] |
| 19:52:37 | | nine (nine) joins |
| 20:09:00 | | Snivy quits [Ping timeout: 258 seconds] |
| 20:14:03 | | Snivy (Snivy) joins |
| 20:23:43 | | PredatorIWD25 quits [Read error: Connection reset by peer] |
| 20:25:36 | | Lunarian1 is now known as LunarianBunny1147 |
| 20:36:26 | | NatTheCat (NatTheCat) joins |
| 20:40:46 | | FiTheArchiver joins |
| 20:51:43 | | Meli quits [Remote host closed the connection] |
| 20:53:07 | | Meli (Meli) joins |
| 21:04:02 | | ^ quits [Remote host closed the connection] |
| 21:04:05 | | ^ (^) joins |
| 21:08:56 | | ^ quits [Ping timeout: 260 seconds] |
| 21:10:05 | | ^ (^) joins |
| 21:12:03 | | MrMcNuggets quits [Quit: WeeChat 4.3.2] |
| 21:17:41 | | ^ quits [Ping timeout: 260 seconds] |
| 21:18:35 | | ^ (^) joins |
| 21:31:55 | | etnguyen03 (etnguyen03) joins |
| 21:32:15 | | FiTheArchiver1 joins |
| 21:34:06 | | FiTheArchiver quits [Ping timeout: 258 seconds] |
| 21:36:48 | | ^ quits [Remote host closed the connection] |
| 21:36:59 | | ^ (^) joins |
| 21:47:31 | | ^ quits [Ping timeout: 258 seconds] |
| 21:53:42 | | ^ (^) joins |
| 22:05:18 | | etnguyen03 quits [Client Quit] |
| 22:08:38 | | etnguyen03 (etnguyen03) joins |
| 22:25:28 | | Dada quits [Ping timeout: 258 seconds] |
| 22:35:15 | | FiTheArchiver1 quits [Client Quit] |